The log4j vulnerability and it’s associated attack vectors was always going to be major cybersecurity crisis – and of course once the bad actors knew about it they would expand their exploitation. This article on the SANS internet shows how initial attempts to mitigate the log4j issue are now being countered by the hackers.
Log4Shell Attacks Getting “Smarter” – SANS Internet Storm Centre
Clive Catton MSc (Cyber Security) – by-line and other articles
