Attackers Target Log4J to Drop Ransomware, Web Shells, Backdoors

Threat actors, which includes at least one country-point out actor, are making an attempt to exploit the recently disclosed Log4j flaw to deploy ransomware, distant accessibility Trojans, and Web shells on vulnerable units. All the while, corporations go on to obtain versions of the logging tool containing the vulnerability.

This new attack activity signifies an escalation of sorts from attackers’ preliminary exploitation tries, which largely targeted on dropping cryptocurrency mining resources and compromising units with the goal of including them to a botnet. Targeted units incorporate servers, digital machines, PCs, and IP cameras.

CrowdStrike on Tuesday reported it has observed a country-point out actor make moves that propose an fascination in exploiting the flaw.

“CrowdStrike Intelligence has observed point out-sponsored actor NEMESIS KITTEN — dependent out of Iran — recently deploy into a server a class file that could be activated by Log4j,” suggests Adam Meyers, senior vice president of intelligence at CrowdStrike. “The timing, intent, and capacity are steady with what would be the adversary making an attempt to exploit Log4j,” he provides. Meyers describes NEMESIS KITTEN as an adversary that has beforehand been engaged in each disruptive and harmful attacks.

The most current developments heighten the urgency for corporations to update to the new version of the Log4j logging framework that the Apache Foundation launched Dec. 10, or to implement the mitigations it has recommended, protection specialists reported this 7 days.

Browse the Entire Posting on Dark Reading through

Rosa G. Rose

Next Post

Paging Zefram Cochrane: Humans have figured out how to make a warp bubble

Mon Dec 20 , 2021
Really don’t pack your baggage and go to Bozeman however. This micro-scale warp bubble is not going to be able of propulsion, but it could have myriad other programs, suggests its discoverer Dr. Sonny White. A properly produced Alcubierre warp bubble. As space constricts in front of the vessel and […]