Dec 22- Experts remain concerned regarding the malicious use of Log4j vulnerabilities. Experts predict a wide variety of malicious use-cases and have begun to see a handful of them manifest in the wild.
Threat actors are currently exploiting Log4j to release Dridex malware, which is a banking trojan originally developed to steal online banking credentials from unsuspecting persons. Hackers have since evolved the malware – meaning that it can now conduct an array of malicious activities, from installing additional payloads to secretly taking screenshots.
Dridex malware infections are believed to derive from the Evil Corp hacking group, which also deploys ransomware threats.
For more information about the Log4j vulnerabilities, click here. For more information about preventing financial fraud, click here.
Lastly, to learn more about managing cyber risk in a rapidly changing world, please join us at the premiere cyber security event of the year – CPX 360 2022. Register here.