Log4j Update: Threat to Local Hosts - ThreatX Response

BLOG IN Blog BY

ThreatX Labs

PUBLISHED ON December 18, 2021
LAST UPDATED March 18, 2022

Researchers have discovered a new attack vector that may allow an attacker to trigger the Log4j vulnerability within localhosts.

ThreatX CISO Andrew Usekas confirms: “This is a variant of the same Log4j vulnerability, but using localhost (127.0.0.1) to bypass restrictions. While the intent is to exploit services on the local host, we have confirmed that the rules we developed in response to the original vulnerability protect customers against this new attack vector.”

Read more about this new attack vector here: https://threatpost.com/new-log4shell-attack-vector-local-hosts/177128/

ThreatX Platform Overview

Log4j Update: Threat to Local Hosts – ThreatX Response

Tags

About the Author

ThreatX Labs

<img src="https://www.threatx.com/wp-content/themes/threatx/assets/img/icons/icon-search-close.svg" alt="">

ThreatX Platform Overview

Log4j Update: Threat to Local Hosts – ThreatX Response

Tags

About the Author

ThreatX Labs

Subscribe for updates

SHARE

Subscribe for updates

SHARE

Subscribe for updates

Related Content

Cyberattacks in 2022 Will Look Familiar

Why Identifying Sensitive Data in APIs Is Critical for PCI DSS and GDPR Compliance

From Zombie to Rogue to Shadow APIs: How to Reduce API Security Risks