Log4j Vulnerability - Everything you need to know

Logo
Presented by

Yaniv Shechtman, Lotem Finkelsteen

About this talk

The Apache Log4j vulnerability exploit has caught security teams entirely off guard. Log4j is the most popular java logging library with over 400,000 downloads from its GitHub project and the Log4j library is embedded in almost every Internet service or application we are familiar with, including Twitter, Amazon, Microsoft, Minecraft and more. Exploiting this vulnerability is simple and allows threat actors to control java-based web servers and launch remote code execution attacks. We’ve subsequently seen new variations of the original exploit being introduced rapidly- over 60 in less than 24 hours. Check Point’s Infinity architecture provides zero-day protection for our customers and prevented hackers from exploiting this vulnerability in our customer deployments. Join us to discuss: • How to identify a Log4j attack • Who is vulnerable to this exploit • How to keep applications secure from this attack and future, currently unknown zero-day attacks
Related topics:

More from this channel

Upcoming talks (3)
On-demand talks (346)
Subscribers (52330)
Check Point Software Technologies Ltd. (www.checkpoint.com) is a leading provider of cyber security solutions to corporate enterprises and governments globally. Check Point Infinity’s portfolio of solutions protects enterprises and public organizations from 5th generation cyber-attacks with an industry leading catch rate of malware, ransomware and other threats. Infinity comprises three core pillars delivering uncompromised security and generation V threat prevention across enterprise environments: Check Point Harmony, for remote users; Check Point CloudGuard, to automatically secure clouds; and Check Point Quantum, to protect network perimeters and datacenters, all controlled by the industry’s most comprehensive, intuitive unified security management; Check Point Horizon, a prevention-first security operations suite. Check Point protects over 100,000 organizations of all sizes.