An extremely high-risk vulnerability has been identified in Apache Log4j and this has been widely reported in the news and IT publications.
Apache Log4j is a vulnerability that affects an open-source Java-based logging library used by many hundreds of thousands organisations in their applications, and cloud services.
The Log4j vulnerability (sometimes referred to as “Log4Shell”) is a zero-day vulnerability (CVE-2021-44228) that can allow access to servers and unauthenticated remote code execution.
The obvious implication is that criminals could use it to gain control over a host of systems presumed to be secure.
Would be hackers are most like scanning many sites and applications to look for this vulnerability.
Steps to take:
Firstly, the good news is that there is an easy to fix issued with an update.
Contact a well respected Managed IT support consultants (such as Correct Group Ltd or any other that is contracted to your organisation) and request their help.
Voicelinx can confirm that our own servers and systems are patched and secure to this vulnerability.