Hackers Linked to China, Iran Seek to Exploit the Log4Shell Vulnerability
Huawei reportedly sought to work with Chinese intelligence, Natural gas supplier hit with a ransomware attack, Iranian cyberspies used slack to hide activities, DHS launches bug bounty program, more
Hackers linked to China and Iran are among the growing number of cyber attackers seeking to exploit the widespread and severe Log4Shell vulnerability, according to researchers at Microsoft and Mandiant. One of the groups exploiting the security hole in Log4j is the same China-backed group, Hafnium, linked to a widespread attack on Microsoft Exchange servers earlier this year.
Check Point researchers say that they have so far counted close to 600,000 attempts to exploit the Log4J bug by malicious cybercriminals, with about 44% of corporate networks worldwide having been hit by these attempts. In a briefing on Tuesday night, Eric Goldstein, the executive assistant director of the Cybersecurity and Infrastructure Security Agency (CISA), said that his agency is unaware of a federal agency being breached by hackers leveraging the Log4J flaw. (Robert McMillan and Dustin Volz / Wall Street Journal)
Related: The Register - Security, DZone Security Zone, channelnews, Dark Reading, CRN, Reddit - …
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.