The Log4J vulnerability in Java-based software continues to wreak havoc worldwide. The software is utilized by countless organizations to configure their applications, and despite security teams diligently patching for the last week, it is difficult to accurately assess just how deep the infection has spread in any given system.
Log4J is classified as Critical, or 10.0 severity on CVSS version 3, and highly dangerous. The Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) warns that “a growing set" of hackers are actively exploiting the vulnerability, and due to the obfuscated nature of cloud infrastructure and software application development, it is difficult for any security team to determine how they may be impacted.
LogicHub’s dedicated managed detection and response security team created this demonstration to give potential victims a detailed tutorial on how to detect and respond to the Log4Shell vulnerability in your system.
If you already have a LogicHub instance, we've got you covered. If you don't have the LogicHub MDR service or SOAR platform in place, please contact us to schedule a free security consultation or a discounted threat assessment. https://info.logichub.com/free-security-consultation-log4j-emergency-response