Log4j Vulnerability - Everything you need to know

Presented by

Yaniv Shechtman, Lotem Finkelsteen

About this talk

The Apache Log4j vulnerability exploit has caught security teams entirely off guard. Log4j is the most popular java logging library with over 400,000 downloads from its GitHub project and the Log4j library is embedded in almost every Internet service or application we are familiar with, including Twitter, Amazon, Microsoft, Minecraft and more. Exploiting this vulnerability is simple and allows threat actors to control java-based web servers and launch remote code execution attacks. We’ve subsequently seen new variations of the original exploit being introduced rapidly- over 60 in less than 24 hours. Check Point’s Infinity architecture provides zero-day protection for our customers and prevented hackers from exploiting this vulnerability in our customer deployments. Join us to discuss: • How to identify a Log4j attack • Who is vulnerable to this exploit • How to keep applications secure from this attack and future, currently unknown zero-day attacks

Related topics:

More from this channel

Upcoming talks (6)
On-demand talks (279)
Subscribers (44647)
Check Point Software Technologies Ltd. (www.checkpoint.com) is a leading provider of cyber security solutions to corporate enterprises and governments globally. Its solutions protect customers from 5th-generation cyber-attacks with an industry leading catch rate of malware, ransomware and other targeted attacks. Check Point offers a multilevel security architecture with our new Gen V advanced threat prevention that protects all networks, cloud and mobile operations of a business against all known attacks combined with the industry’s most comprehensive and intuitive single point of control management system. Check Point protects over 100,000 organizations of all sizes.