Hackers are scanning for and exploiting the Log4j Log4Shell vulnerability to deploy malware or find vulnerable servers.
An exploit was publicly released for a critical zero day vulnerability called “Log4Shell” in the Apache Log4j Java-based logging platform used to access web server and application logs.
Hackers can use this vulnerability to control the URL to pass Base64-encoded commands or Java classes to execute on the vulnerable device. Just forcing the connection to the remote server is used to determine if a server is vulnerable to the Log4shell vulnerability.
These remote command and code execution flaw developed by hackers can be used to deploy various malware including Botnets and Cryptominers on targeted systems and networks.
NPAV recommends users to use secured networks and install NPAV on their systems and mobile phones to securely browse and connect to internet. These vulnerabilities are complex and can cause huge damage to individuals and organizations.
Use NPAV and join us on a mission to secure the cyber world.