Cybersecurity experts have raised the alarm about a previously unknown critical flaw in a commonly used software tool that could potentially allow hackers to compromise millions of devices connected to the internet.

The fault, known as ‘Log4Shell’, has been described as the single biggest, most critical vulnerability of the last decade, which puts it in the running for a place among the biggest glitches in modern computing history.

https://i0.wp.com/usercontent.one/wp/www.asianewsday.com/wp-content/uploads/2021/12/%E2%80%98The-Internets-on-fire-as-techs-race-to-fix-software.jpg?w=696&ssl=1

Researchers have warned that the flaw affects servers run by tech giants like Microsoft, Apple, Amazon, and Twitter.

The first indication about the exploit was seen on sites that hosted servers for the hugely popular Microsoft-owned online game Minecraft.

Marcus Hutchins, the British security researcher known for halting the WannaCry malware attack, tweeted that apparently some of the game’s users were already using the flaw to remotely run programs on the computers of other users by simply pasting a short message into a chat box.

https://i0.wp.com/www.telegraph.co.uk/content/dam/technology/2021/04/30/Microsoft-Apple-and-Amazon-holding-money_trans_NvBQzQNjv4BqM37qcIWR9CtrqmiMdQVx7LX8Eqo9d7g3sDN-pwQZpNo.jpg?w=696&ssl=1

The vulnerability, which is located in ‘log4j’ – an open-source logging tool developed by the Apache Software Foundation – was first reported on November 24 by Chinese tech giant Alibaba.

The foundation then rated the severity of the problem at 10 on a scale of one to 10. However, the flaw was only publicly revealed last week.

The logging software is used by Amazon Web Services and other cloud server providers as well as industry and government networks.

https://i0.wp.com/cdn.arstechnica.net/wp-content/uploads/2019/05/GettyImages-843466180-800x526.png?resize=696%2C458&ssl=1

Logging refers to a process where applications keep a running tab on activities they have performed that can later be reviewed to check for errors. Nearly every network security system uses a logging process, which hints at the scale of the problem.

Noting that hackers had fully weaponized the exploit shortly after it was revealed, Adam Meyers – senior vice president of intelligence at cybersecurity firm Crowdstrike – told the AP that the internet’s on fire right now as experts raced to patch the flaw while new tools to exploit it were being distributed.

Although a security fix to the log4j tool has been released, Log4Shell will remain a threat during the time it takes to ensure that all vulnerable machines are updated.

RT. com / ABC Flash Point News 2021.

4.5 2 votes
Article Rating
Subscribe
Notify of
guest
10 Comments
Inline Feedbacks
View all comments
Roxada
Guest
14-12-21 20:06

It is called Cyber-Plandemic and exactly like Schwab and his terrorist friends announced the plandemic in 2019, they already announced what is coming sociable(DOT)co/government-and-policy/cyber-polygon-great-reset-centralized-power-surveillance/ In case someone wonders, why for 2 years there are all this global critical hacks emerging, in critical industry Facebook, oil refineries, meat productions, gasoline stations, power stations, a lot of other critical hard and software, the temporary local electric blackouts in Austria or the total 2021 blackout of Lebanon. The Agenda21 alias Great Reset twitter(DOT)com/ThreadsIrish/status/1459476288100397060 The plandemic is fake and is used to usher in the Great Reset. The Reset itself, well, “resets” the world… Read more »

Roxada
Guest
Reply to  Roxada
14-12-21 20:07

Israel hosts cyber pandemic exercise simulating a cyber-attack on global financial system with 10 countries, IMF, World Bank & BIS. Un-elected WEF globalists push digital identity schemes in digital health inclusion report.

LittleBuddha
LittleBuddha
Guest
14-12-21 20:09

Don’t you think China has the FORESIGHT to build a cyber Great Wall some 10 years ago? Call it what you ‘d like, they have achieved cyber sovereignty that nobody else could. Cyber safety and the control of cyber tech giants allow them to develop their e-commerce and online payment systems without too much worries. They have a parallel cyber universe that works for them even though they are still connected with the bigger internet in a controllable manner.

Demandsider2
Demandsider2
Guest
Reply to  LittleBuddha
14-12-21 20:11

If they do, you can bet that The Fed and its Wall Street subsidiary is partnering with them, as usual.

LittleBuddha
LittleBuddha
Guest
Reply to  Demandsider2
14-12-21 20:11

Choose what you want to believe. The FACT remains China has the world’s BIGGEST user base – 900 million and the penetration rate is 71%. It is BIG enough to be a force of its own. if necessary, China’s interest can function on its own.