Open-source developers released a patch for a severe vulnerability in Apache’s Log4J, and the fix has been discovered to have two vulnerabilities of its own.<\/p>\n
According to a report<\/a><\/strong> from Ars Technica, the fix allowed attackers to execute denial-of-service attacks, making it easy to take vulnerable services offline until they reboot their servers.<\/p>\n Researchers are encouraging users to update to a new patch \u2014 2.16.0 \u2014 as a potential fix for the vulnerability.<\/p>\n They said that the initial fix “was incomplete in certain non-default configurations” and that the new patch “fixes this issue by removing support for message lookup patterns and disabling JNDI functionality by default”.<\/p>\n The zero-day exploit was detected<\/a><\/strong> on 9 December 2021 by LunaSec and has made organisations such as Apple, Tesla, and Amazon vulnerable to attacks.<\/p>\n The exploit, also known as Log4Shell and tracked as CVE-2021-44228, allows an attacker to inject log messages or message parameters into server logs that load code from a remote server.<\/p>\n IT security company Sophos detected a rapid increase in attacks exploiting Log4J on Sunday, 12 December.<\/p>\n “Since Dec. 9, Sophos has detected hundreds of thousands of attempts to remotely execute code using the Log4Shell vulnerability,” said Sophos senior threat researchers Sean Gallagher.<\/p>\n Gallagher highlighted the severity of the Log4J vulnerability.<\/p>\n “Many software vulnerabilities are limited to a specific product or platform, such as the ProxyLogon and ProxyShell vulnerabilities in Microsoft Exchange. Once defenders know what software is vulnerable, they can check for and patch it,” he said.<\/p>\n “However, Log4Shell is a library that is used by many products. It can therefore be present in the darkest corners of an organisation’s infrastructure, for example any software developed in-house.”<\/p>\n “Finding all systems that are vulnerable because of Log4Shell should be a priority for IT security,” he added.<\/p>\n There are two vulnerabilities in the first fix released for the Apache Log4J exploit.<\/p>\n","protected":false},"author":341076,"featured_media":414496,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[27],"tags":[723,24470,605,5276,75028,75030,20719],"class_list":["post-427942","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-security","tag-amazon","tag-apache","tag-apple","tag-cyber-security","tag-log4j","tag-log4shell","tag-tesla"],"_links":{"self":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts\/427942"}],"collection":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/users\/341076"}],"replies":[{"embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/comments?post=427942"}],"version-history":[{"count":0,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts\/427942\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/media\/414496"}],"wp:attachment":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/media?parent=427942"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/categories?post=427942"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/tags?post=427942"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
\nNow read: High tech R20 million forensic war room to fight corruption in Joburg<\/a><\/h3>\n","protected":false},"excerpt":{"rendered":"