What is the Apache Log4j Vulnerability?
The Log4j vulnerability allows threat actors to execute code remotely on a targeted computer.
What is Log4j?
Log4j is a Java library for logging error messages in applications.
What is Log4j used for?
Log4j is used in both consumer and enterprise services to log security and performance information. It is used in websites, applications, and operational technology products.
What versions of Apache’s Log4j are affected by the vulnerability?
Apache’s Log4j software library, versions 2.0-beta9 to 2.14.1, known as “Log4Shell” and “Logjam.”
Need Immediate Help?
How to protect against the Log4j vulnerability:
- Prioritize patching.
- Enumerate internet-facing endpoints that use Log4j*.
- Ensure your security operations center (SOC) is actioning alerts on these devices*.
- Install a web application firewall (WAF) with rules that automatically update so that your SOC is able to concentrate on fewer alerts*.
- Apply software updates as soon as they are available.
- If you suspect you have been affected by the Log4j vulnerability a compromise assessment will determine if threat actors have infected your environment.
- *Recommendations from CISA (https://www.cisa.gov/uscert/apache-log4j-vulnerability-guidance)
How can Blue Team Alpha help protect you?
Blue Team Alpha offers a wide range of cybersecurity services. Those that would pertain specifically to the Log4j vulnerability would be our Compromise Assessment services which are part of our AlphaRisk sector. If you feel that your business has been affected by the Log4j vulnerability, do not wait. Other other services include; emergency Incident Response and Remediation services, in-place Incident Response Triage and Management services, IR retainer services, Business Email Compromise services and so much more! Contact us today to learn more about how we can find, eradicate and protect your business.