On December 9, 2021, a critical zero-day vulnerability affecting Apache's Log4j2 library was disclosed to the world and broke the internet.
Java is the third most used computer language, and its Log4j2 library is extremely popular, with an estimated 15 billion devices around the globe currently running it. Hundreds of millions of Java-based applications, databases and devices are at severe risk because Log4j is hard to find and easy to exploit.
Every type of organization across every industry is at risk from the vulnerability. Log4Shell is the needle in a haystack due to the ease of exploit and the difficulty in uncovering the vulnerability within your organization.
The most serious vulnerability Jen Easterly has seen in her career is Log4Shell. She warned that the vulnerability could take years to fix. Multiple detection methods would be required for the remediating of this vulnerability.
In the last two weeks of the year, hackers and attackers saw an opportunity to steal information from companies. It didn't take long for the vulnerability to be exploited in the wild. In just 72 hours, nearly 1 million attack attempts were launched.
As part of an ongoing information-gathering operation, a Chinese hacking group called APT41 broke into local government agencies in at least six U.S. states.