xbdms' Blog

December 17, 2021

In this blog, I will discuss some of the botnets (Muhstik and Mirai) that are using the recently discovered vulnerability in the java logging library log4j. Make sure to update to the latest version of log4j or switch to a different logger to avoid any breaches.

Sources:

https://logging.apache.org/log4j/2.x/security.html

https://blog.netlab.360.com/ten-families-of-malicious-samples-are-spreading-using-the-log4j2-vulnerability-now/