Recently, the internet was jolted by a vulnerability found in the Java-based programme “Log4j”.
According to cybersecurity firm Cybereason, the list of prospective victims includes approximately one-third of all web servers on the globe. Twitter, Amazon, Microsoft, Apple, IBM, Oracle, Cisco, Google, and Minecraft, one of the world’s most popular video games, are among the tech and industry behemoths running the popular software code that U.S. authorities believe has exposed hundreds of millions of devices.
What is Log4j?
The log4j vulnerability has shaken up the world. Before diving into its details, we first have to know what log4j is and what does it do. Log4j is a programming code written in the Java computer language. It was first founded by the Apache software foundation. It can run on Windows, macOS and Linux.
Java is a free, open-source programming language that has a built-in “log” or record of activity, similar to a diary — that software developers may use to diagnose problems or track data within their systems. Its widespread use, along with the fact that it is free, has expanded the logging library to every corner of the internet.
Why are the several uses of Log4j?
Log4j is a very popular tool among software engineers. Log4j is a popular and helpful logging solution for software development implemented in the Java programming language. Logging using log4j is crucial for several reasons, including the fact that it provides a dependable, quick, and versatile logging framework for creating application interfaces (APIs).
Developers use Logj4 to do these: logging messages according to types and levels, controlling runtime, and controlling reporting place. It also includes additional logging features such as log levels (fatal, error, warning, and so on), mechanisms for writing to different log files, and log rolling patterns, among others. This is why log4j is a popular open-source logging package for Java applications.
When did the vulnerability attack begin?
The Apache Software Foundation’s volunteer team was notified of the vulnerability on November 24 when a member of Alibaba’s cloud security team spotted it. However, an unusual warning sent ripples through the cybersecurity community staff late last week after the makers of the sandbox video game Minecraft shared the security vulnerabilities in a blog post, alerting gamers that hackers had discovered a flaw in their game that could be used to infiltrate their computers. The staff also issued a fix, but cybersecurity experts immediately determined that the flaw was encoded in a widely used software application that was used for more than simply virtual worldbuilding.
How are the different scammers and hackers exploiting this attack?
- Many hackers from different parts of the world, be it China, Iran, North Kora or turkey, have tried to capitalize on this attack.
- APT 35, also known as “Charming Kitty,” an Iranian hacker outfit, attempted to exploit the Log4j vulnerability against seven Israeli targets in the government and corporate sectors.
What are various organisations doing to protect themselves?
Some “patches” and technical support have been widely distributed. This week, the Apache software foundation released updates to its tool, and Microsoft advised consumers to contact software application suppliers to certify that they are utilising the Java programming language.
CISA suggests that businesses review their internet-facing Log4j applications, respond to notifications related to these devices, and build a firewall with automated upgrades.
Aside from installing updates for different web services as they become available, normal individuals won’t be able to do much; most of the effort will be done on the corporate side, as businesses and organisations hurry to adopt solutions.
What should one be careful of next?
Cybersecurity experts are concerned that hostile actors would use the weakness to target less-resourced small and medium-sized enterprises, schools, and hospitals, as well as victims who may be unaware of the risk. The vulnerability has also spurred a debate over the regulation of open-source code, which is generally available for public use. Some experts are now advocating for a “Software Bill of Materials,” which would inform users about the type of software contained within their products and apps, much like a nutrition facts label does for food.
However, strong cybersecurity software needs to be taken into account so that such vulnerabilities are always kept in check.
