This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Apache Log4j Vulnerability Information and Resources

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

Apache Log4j Vulnerability Information and Resources

jforsythe
Community Team Member
‎12-15-2021 12:57 PM

General Graphics (21).jpg

 

Disclaimer: This threat is rapidly evolving by the hour. Unit 42 researchers are updating this Unit 42 blog in real time, and therefore the blog serves as our single source of truth. The information provided is for general informational purposes only. 

 

On December 9, a remote code execution (RCE) vulnerability in Apache Log4j 2 was identified as being exploited in the wild. Apache Log4j is an open-source logging utility that is leveraged within numerous Java applications around the world. The release of public proof-of-concept (PoC) code and subsequent investigation revealed that the exploitation was incredibly easy to perform. By submitting a specially crafted request to a vulnerable system, the attacker can instruct the system to download and subsequently execute a malicious payload. Due to its recent discovery, there are still many on-premises and cloud servers that have yet to be patched.

 

The exploit code for the CVE-2021-44228 vulnerability has been made publicly available, and massive scanning activity has begun on the internet with the intent of seeking out and exploiting unpatched systems. The Unit 42 Threat Intelligence and product development teams continue to monitor this situation for additional details and updates and will share the latest information on the exploit and how to defend against it.

 

Register now for a webinar with Jen Miller-Osborn, deputy director for the Unit 42 threat research team, to learn:

 

  • Key details and an analysis of the vulnerability
  • How to determine whether your organization is vulnerable
  • Recommended mitigations
  • What Palo Alto Networks products can do to prevent this vulnerability from being exploited

 

For the most up-to-date information on theApache Log4j vulnerability, please visit the Unit 42 blog, Another Apache Log4j Vulnerability Is Actively Exploited in the Wild (CVE-2021-44228)

 

Here's a full list of resources regarding theApache Log4j vulnerability:

 

The Palo Alto Networks Full-Court Defense for Apache Log4j

Unit 42 Briefing: Apache Log4j Threat Update

Another Apache Log4j Vulnerability Is Actively Exploited in the Wild (CVE-2021-44228)

Apache Log4j Threat Update: Unit 42 On-Demand Briefing

Using Cortex XSOAR to deal With Apache Log4j Vulnerability (CVE-2021-44228) 
Protect Your IoT Devices from Log4j 2 Vulnerability
 
  • 5852 Views
  • 0 comments
  • 1 Likes
Register or Sign-in
Labels
Popular Blogs
Top Liked Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks