[ad_1]
Everyone be ready to fix it. What started as a security issue for fans of Minecraft’s popular video game consoles has quickly turned into a cybercrime.
In a nutshell, a major threat in the Java logging system that is widely used by Apache Log4j has been found – the preferences affect the most widely used platforms.
The issue was first identified Friday as a problem affecting Minecraft’s Java Edition players. Mu and PSA wrote Friday, company officials warned players that the security crisis needed to be addressed urgently. “These vulnerabilities present a risk of your computer being compromised, and while this has been addressed by all types of game clients, you should do this to protect your game and your servers,” the statement said. slowly the control of compression.
The threat, called Log4Shell, has been identified as CVE-2021-44228 by the Apache Software Foundation and appears to have been awarded 10th place on the Common Vulnerability Scoring System scale — the highest possible test.
But, unfortunately, as mentioned earlier, Minecraft is not the only service that can be threatened with the error. Instead, we could have a big problem on our hands here – as the saying goes “millions”Of software uses log4j, plus some of the web large towers (see: Apple, Twitter, Cloudflare, Valve, and others). Cybersecurity experts went online on Friday to express their concerns about the threat. They are the most demanding companies to change their systems immediately.
Robert Graham, Acybersecurity expert, have been temporarily modified her Twitter login “THREAT LEVEL RED MAKE YOUR LOG4J.” Famous British robber Marcus Hutchins so-called risk “very bad.” And even the NSA cybersecurity director, Rob Joyce, chimed in: “The risk of log4j is very highr used due to the spread of software, even the NSA’s GHIDRA, “he said.
Reports of torture are also being heard. GreyNoise, a security company, wrote on Twitter that it detects the use of the virus: “GreyNoise sees an increasing number of clients using Apache Log4J CVE-2021-44228. Consumption from ~ 100 different hosts, almost all of which are Tor exits.”
More on risk and mitigation measures can be found on the Apache page. If your organization uses log4j library, security experts advises that you upgrade to log4j-2.1.50.rc2 immediately. Better to do it! This is just the beginning of this dangerous insecurity.
[ad_2]
Source link
