US CISA Warning: Hackers Still Exploiting Log4Shell Vulnerability

CISA

The CISA alert highlights the need for product security teams to take extra care to identify any software that contains risky Log4j packages. However, security teams should not stop at patching VMware Horizon and Unified Access Gateway servers: our records show that the Log4Shell vulnerability currently affects more than 1,800 products.

How to Master the Vulnerability

To prevent Log4Shell exploit attempts and other potentially exploitable vulnerabilities, organizations should be aware of all vendors and products known to be affected. For a more complete understanding, they also need to be aware of vulnerabilities that do not have a CVE ID.

Since the discovery of Log4Shell, VulnDB has been tracking this information and aggregating the details into its easy-to-use platform. In fact, the exact vulnerability mechanism for VMware is explained in our description and solution information. Using this metadata, VulnDB users can ensure that they are not subject to persistent exploitation attempts.

Vulnerabilities and Threat Participants Chatter

In addition to understanding the critical vulnerabilities and supply chain/third-party weaknesses you face, it is important for organizations to understand which vulnerabilities threat actors are actively discussing and seeking to exploit in the illicit community. This critical context can inform processes (e.g. patching) that security teams can actively prioritize to fix potentially risky vulnerabilities, such as Log4Shell.

See the Flashpoint vulnerability management solution in action

In addition to VMware and Unified Access Gateway, there may be many other products that are currently vulnerable to CVE-2021-44228. Sign up for a free trial of Vinhchin to learn how to currently back up and disaster tolerate your critical data.

Vinchin Backup & Recovery offers a variety of virtual machine backup solutions that reduce the impact on business networks and production systems, increase the transmission efficiency of backup data, reduce backup data storage requirements, and allow users to recover the relevant virtual machines and their data at that point in time in just a few seconds and resume business system operation in just a few minutes, all without ever affecting the original backup data.

Vinchin Backup & Recovery offers Hyper-V backup and restore best practices that may be used in different situations to ensure that vital data is fully secured against a variety of threats.

Some of the virtual environments it supports are VMware, XenServer/XCP-ng, Hyper-V, RHV/oVirt, OpenStack, Sangfor HCI, Oracle Linux Virtualization Manager, and Huawei FusionCompute (Xen Based). oVirt backup for MSPs, Cross-Platform Recovery (V2V), Database Backup and recovery, Backup Data Encryption and backup Storage Protection, and other new features have all been included in Vinchin Backup & Recovery v6.5.

Leave a Reply

Your email address will not be published. Required fields are marked *