{"id":381804,"date":"2021-12-15T16:00:54","date_gmt":"2021-12-15T13:00:54","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/what-is-the-log4j-flaw-and-how-does-it-affect-you\/"},"modified":"2021-12-15T16:00:54","modified_gmt":"2021-12-15T13:00:54","slug":"what-is-the-log4j-flaw-and-how-does-it-affect-you","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/what-is-the-log4j-flaw-and-how-does-it-affect-you\/","title":{"rendered":"#What Is the Log4j Flaw, and How Does it Affect You?"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_85 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a33b0bb7f276\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #dd3333;color:#dd3333\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #dd3333;color:#dd3333\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a33b0bb7f276\" checked aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/buradabiliyorum.com\/en\/what-is-the-log4j-flaw-and-how-does-it-affect-you\/#What_Is_Log4j\" >What Is Log4j?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/buradabiliyorum.com\/en\/what-is-the-log4j-flaw-and-how-does-it-affect-you\/#How_the_Log4j_Flaw_Works\" >How the Log4j Flaw Works<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/buradabiliyorum.com\/en\/what-is-the-log4j-flaw-and-how-does-it-affect-you\/#Log4js_Security_Impact\" >Log4j\u2019s Security Impact<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/buradabiliyorum.com\/en\/what-is-the-log4j-flaw-and-how-does-it-affect-you\/#How_Does_Log4j_Affect_You\" >How Does Log4j Affect You?<\/a><\/li><\/ul><\/nav><\/div>\n<p><strong>&#8220;#What Is the Log4j Flaw, and How Does it Affect You?&#8221;<\/strong><\/p>\n<div>\n<figure style=\"width: 1200px\" class=\"wp-caption alignnone\"><img loading=\"lazy\" decoding=\"async\" class=\"type:primaryImage wp-image-774376 size-full\" data-pagespeed-lazy-srcset=\"https:\/\/www.howtogeek.com\/wp-content\/uploads\/2021\/12\/shutterstock_1988260253.jpg?width=398&amp;trim=1,1&amp;bg-color=000&amp;pad=1,1 400w, https:\/\/www.howtogeek.com\/wp-content\/uploads\/2021\/12\/shutterstock_1988260253.jpg?width=1198&amp;trim=1,1&amp;bg-color=000&amp;pad=1,1 1200w\" sizes=\"auto, 400w, 1200w\" data-pagespeed-lazy-src=\"https:\/\/www.howtogeek.com\/wp-content\/uploads\/2021\/12\/shutterstock_1988260253.jpg?width=1198&amp;trim=1,1&amp;bg-color=000&amp;pad=1,1\" alt=\"An illustration of networked computer software and hardware devices.\" width=\"1200\" height=\"675\" data-crediturl=\"https:\/\/www.shutterstock.com\/image-vector\/programming-coding-program-product-code-workplace-1988260253\" data-credittext=\"Andrey Suslov\/Shutterstock.com\" src=\"\/pagespeed_static\/1.JiBnMqyl6S.gif\" onload=\"pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\" onerror=\"this.onerror=null;pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\"\/><figcaption class=\"wp-caption-text\"><span class=\"type:primaryImage imagecredit\"><a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.shutterstock.com\/image-vector\/programming-coding-program-product-code-workplace-1988260253\">Andrey Suslov\/Shutterstock.com<\/a><\/span><\/figcaption><\/figure>\n<p>A huge number of cyberattacks are exploiting <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.cloudsavvyit.com\/15042\/critical-rce-zero-day-exploit-found-in-popular-java-logging-library-log4j-affects-much-of-the-internet\/\">a dangerous flaw called log4shell in the log4j software<\/a>. One top U.S. cybersecurity official was quoted in <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.cyberscoop.com\/log4j-cisa-easterly-most-serious\/\"><i>Cyberscoop<\/i><\/a> saying that is one of the most serious attacks of her career, \u201cif not the most serious.\u201d Here\u2019s what makes it so bad\u2014and how it affects you.<\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"What_Is_Log4j\"><\/span>What Is Log4j?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>The log4j bug (also called the log4shell vulnerability and known by the number <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2021-44228\">CVE-2021-44228<\/a>) is a weakness in some of the most widely used web server software, Apache. The bug is found in the open-source log4j library, a collection of pre-set commands programmers use to speed up their work and keep them from having to repeat complicated code.<\/p>\n<p>Libraries are the bedrock of many, if not most, programs as they\u2019re great timesavers. Instead of needing to write out a whole block of code time and time again for certain tasks, you just write a few commands which tell the program that they need to grab something from a library. Think of them like shortcuts you can put in your code.<\/p>\n<p>However, if something goes wrong, like in library log4j, that means that all programs that use that library are affected. That would be serious in and of itself, but Apache runs on a lot of servers, and we do mean a <i>lot<\/i>. <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/w3techs.com\/technologies\/details\/ws-apache\">W3Techs<\/a> estimates that 31.5 percent of websites use Apache and <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/builtwith.com\">BuiltWith<\/a> claims to know of more than 52 million sites that use it.<\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"How_the_Log4j_Flaw_Works\"><\/span>How the Log4j Flaw Works<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>That\u2019s potentially a lot of servers that have this flaw, but it gets worse: How the log4j bug works is that you can replace a single string of text (a line of code) which makes it load data from another computer on the internet.<\/p>\n<p>A halfway decent hacker can feed the log4j library a line of code that tells a server to pick up data from another server, owned by the hacker. This data could be anything, from a <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/download-scripts-themes-apps\/\" data-internallinksmanager029f6b8e52c=\"9\" title=\"Download Scripts &amp; Themes &amp; Apps\" target=\"_blank\" rel=\"noopener\">script<\/a> that gathers data on the devices connected to the server\u2014like browser fingerprinting, but worse\u2014or even take control of the server in question.<\/p>\n<p>The only limit is the hacker\u2019s inventiveness, skill barely comes into it as it\u2019s so easy. So far, <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/click.linksynergy.com\/deeplink?id=2QzUaswX1as&amp;mid=24542&amp;u1=htg\/774319&amp;murl=https%3A%2F%2Fwww.microsoft.com%2Fsecurity%2Fblog%2F2021%2F12%2F11%2Fguidance-for-preventing-detecting-and-hunting-for-cve-2021-44228-log4j-2-exploitation%2F\">according to Microsoft<\/a>, hackers\u2019 activities have included crypto mining, data theft and hijacking servers.<\/p>\n<p>This flaw is a\u00a0zero-day, which means it was discovered and exploited before a patch to fix it was available.<\/p>\n<p>We recommend the\u00a0<a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/blog.malwarebytes.com\/exploits-and-vulnerabilities\/2021\/12\/log4j-zero-day-log4shell-arrives-just-in-time-to-ruin-your-weekend\/\">Malwarebytes blog\u2019s take on log4j<\/a>\u00a0if you\u2019re interested in reading a few more technical details.<\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"Log4js_Security_Impact\"><\/span>Log4j\u2019s Security Impact<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>The impact of this flaw is <i>massive<\/i>: one-third of the world\u2019s servers are possibly affected, including those of major corporations like Microsoft as well as Apple\u2019s iCloud and its <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.cnbc.com\/2018\/02\/11\/apple-could-sell-icloud-for-the-enterprise-barclays-says.html\">850 million users<\/a>. Also affected are gaming platform Steam\u2019s servers. Even Amazon has servers running on Apache.<\/p>\n<p>It\u2019s not just the corporate bottom line that could be hurt, either: there are plenty of smaller companies that run Apache on their servers. The damage a hacker could do to a system is bad enough for a multi-billion company, but a small one could be wiped out completely.<\/p>\n<p>Also, because the flaw was so widely publicized in an effort to get everybody patching it, it has become something of a feeding frenzy. Besides the usual crypto miners trying to enslave new networks to speed up their operations, Russian and Chinese hackers are joining the fun as well,\u00a0 according to several experts quoted in the <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.ft.com\/content\/d3c244f2-eaba-4c46-9a51-b28fc13d9551\"><i>Financial Times<\/i><\/a> (our apologies for the paywall).<\/p>\n<p>All anybody can do now is to make patches that fix the flaw and implement them. However, experts are already saying that <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.zdnet.com\/article\/log4j-flaw-could-be-a-problem-for-industrial-networks-for-years-to-come\/\">it will take years to fully patch all affected systems<\/a>. Not only do cybersecurity professionals need to find out which systems have suffered from the flaw, checks need to be made to see whether the system has been breached and, if so, what the hackers did.<\/p>\n<p>Even after patching, there\u2019s a possibility that whatever the hackers left behind is still doing its job, meaning servers will need to be purged and reinstalled. It\u2019s going to be a huge job and not one that can be done in a day.<\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"How_Does_Log4j_Affect_You\"><\/span>How Does Log4j Affect You?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>All the above might sound like what can only be described as a cyber-apocalypse, but so far we\u2019ve only talked about businesses, not about individuals. That\u2019s what most coverage has focused on. However, there\u2019s a risk for regular people, too, even if they don\u2019t run a server.<\/p>\n<p>As we mentioned, hackers have stolen data from some servers. If the company in question secured the data properly, that shouldn\u2019t be too much of a problem, because the attackers would still need to decrypt the files, not an easy task. However, if people\u2019s data was saved improperly, then they made a hacker\u2019s day.<\/p>\n<p>The data in question could be anything, really, like usernames, passwords, or even your address and internet activity\u2014credit card information is usually encrypted, thankfully. Though it\u2019s too early to tell now how bad it will be, it looks like very few people will be able to avoid log4j\u2019s fallout.<\/p>\n<\/div>\n<p><script>\n setTimeout(function(){\n  !function(f,b,e,v,n,t,s)\n  {if(f.fbq)return;n=f.fbq=function(){n.callMethod?\n  n.callMethod.apply(n,arguments):n.queue.push(arguments)};\n  if(!f._fbq)f._fbq=n;n.push=n;n.loaded=!0;n.version='2.0';\n  n.queue=[];t=b.createElement(e);t.async=!0;\n  t.src=v;s=b.getElementsByTagName(e)[0];\n  s.parentNode.insertBefore(t,s) } (window, document,'script',\n  'https:\/\/connect.facebook.net\/en_US\/fbevents.js');\n   fbq('init', '335401813750447');\n   fbq('track', 'PageView');\n  },3000);\n<\/script><\/p>\n<blockquote><p><strong><span style=\"color: #ff6600;\">If you liked the article, do not forget to share it with your friends. Follow us on\u00a0<span style=\"color: #ff0000;\"><a style=\"color: #ff0000;\" href=\"https:\/\/news.google.com\/publications\/CAAqBwgKMLG0nwswvr63Aw\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">Google News<\/a><\/span>\u00a0too, click on the star and choose us from your favorites.<\/span><\/strong><\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\">For forums sites go to <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/forum.buradabiliyorum.com\/\" target=\"_blank\" rel=\"noopener\">Forum.BuradaBiliyorum.Com<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more like this article, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/technology\/\" target=\"_blank\" rel=\"noopener\">Technology category.<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/www.howtogeek.com\/774319\/what-is-the-log4j-flaw-and-how-does-it-affect-you\/\" target=\"_blank\" rel=\"noopener\">Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8220;#What Is the Log4j Flaw, and How Does it Affect You?&#8221; Andrey Suslov\/Shutterstock.com A huge number of cyberattacks are exploiting a dangerous flaw called log4shell in the log4j software. One top U.S. cybersecurity official was quoted in Cyberscoop saying that is one of the most serious attacks of her career, \u201cif not the most serious.\u201d&#8230;<\/p>\n","protected":false},"author":1,"featured_media":381805,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.howtogeek.com\/wp-content\/uploads\/2021\/12\/shutterstock_1988260253.jpg?height=200p&trim=2,2,2,2","fifu_image_alt":"","footnotes":""},"categories":[18],"tags":[],"class_list":["post-381804","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technology"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/381804","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=381804"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/381804\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/381805"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=381804"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=381804"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=381804"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}