Key Takeaways
- Hackers tau tshaj tawm txoj cai qhia txog kev siv hauv lub tsev qiv ntawv Java siv dav siv.
- Cybersecurity sleuths pom kev luam theej loj thoob plaws lub vev xaib nrhiav cov servers thiab cov kev pabcuam uas siv tau.
-
Lub Cybersecurity thiab Infrastructure Security Agency (CISA) tau hais kom cov neeg muag khoom thiab cov neeg siv kho thiab hloov kho lawv cov software thiab cov kev pabcuam sai.
Lub cybersecurity toj roob hauv pes yog rhiab heev vim yog qhov yooj yim exploitable vulnerability nyob rau hauv ib tug nrov Java logging tsev qiv ntawv, Log4j. Nws tau siv los ntawm txhua qhov nrov software thiab kev pabcuam thiab tej zaum twb tau pib cuam tshuam rau cov neeg siv khoom siv niaj hnub thiab smartphone.
Cov kws tshaj lij Cybersecurity tau pom ntau yam kev siv rau Log4j kev siv dag zog twb pib tshwm hauv lub vev xaib tsaus, xws li los ntawm kev siv Minecraft servers mus rau ntau qhov teeb meem loj uas lawv ntseeg tias tuaj yeem cuam tshuam rau Apple iCloud.
"Qhov kev tiv thaiv Log4j no muaj qhov cuam tshuam tsis zoo, cuam tshuam rau txhua tus neeg muab kev pabcuam software loj uas yuav siv cov khoom no los ua ib feem ntawm lawv daim ntawv thov ntim," John Hammond, Senior Security Researcher ntawm Huntress, hais rau Lifewire ntawm email. "Lub zej zog kev ruaj ntseg tau nthuav tawm cov ntawv thov tsis zoo los ntawm lwm cov tuam txhab thev naus laus zis xws li Apple, Twitter, Tesla, [thiab] Cloudflare, thiab lwm yam. Raws li peb hais, kev lag luam tseem tab tom tshawb nrhiav qhov chaw nres tsheb loj thiab muaj kev pheej hmoo rau qhov tsis zoo no."
Hluav taws kub hauv qhov
Qhov qhov tsis zoo tau taug qab raws li CVE-2021-44228 thiab dubbed Log4Shell, muaj tus qhab nia siab tshaj plaws ntawm 10 hauv qhov kev ntsuas qhov tsis zoo (CVSS).
GreyNoise, uas tshuaj xyuas kev khiav tsheb hauv Is Taws Nem txhawm rau khaws cov cim kev nyab xeeb ntawm kev ceeb toom, thawj zaug pom kev ua haujlwm rau qhov tsis zoo no thaum Lub Kaum Ob Hlis 9, 2021. Qhov ntawd yog thaum riam phom pov thawj-ntawm-lub tswv yim exploits (PoCs) pib tshwm, ua rau muaj Kev nce nrawm ntawm kev soj ntsuam thiab kev siv pej xeem rau lub Kaum Ob Hlis 10, 2021, thiab dhau lub lis piam.
Log4j tau koom ua ke ntau rau hauv cov txheej txheem dav dav ntawm DevOps thiab kev lag luam IT systems thiab hauv cov neeg siv software kawg thiab cov ntawv thov huab nrov.
Piav qhov hnyav ntawm qhov muaj qhov tsis zoo, Anirudh Batra, tus kws tshuaj ntsuam hem thawj ntawm CloudSEK, qhia Lifewire ntawm email tias tus neeg ua yeeb yam hem tuaj yeem siv nws los khiav code ntawm chaw taws teeb server.
"Qhov no tau tso tseg txawm tias cov kev ua si nrov xws li Minecraft kuj muaj qhov tsis zoo. Tus neeg tawm tsam tuaj yeem siv nws los ntawm kev tshaj tawm cov nyiaj them poob haujlwm hauv chatbox. Tsis yog Minecraft nkaus xwb, tab sis lwm cov kev pabcuam nrov xws li iCloud [thiab] Chav kuj muaj qhov tsis zoo, " Batra piav qhia, ntxiv tias "ua rau muaj qhov tsis zoo hauv iPhone yog qhov yooj yim li hloov lub npe ntawm lub cuab yeej."
Tip ntawm Iceberg
Cybersecurity lub tuam txhab Tenable qhia tias vim Log4j suav nrog ntau lub vev xaib thov, thiab siv los ntawm ntau qhov kev pabcuam huab, tag nrho cov peev txheej ntawm qhov tsis zoo yuav tsis paub qee lub sijhawm.
Lub tuam txhab taw qhia rau GitHub qhov chaw cia khoom uas taug qab cov kev pabcuam cuam tshuam, uas thaum lub sijhawm sau npe txog peb lub khw muag khoom thiab cov kev pabcuam, suav nrog cov neeg nyiam xws li Google, LinkedIn, Webex, Blender, thiab lwm tus tau hais ua ntej.
Raws li peb hais, kev lag luam tseem tab tom tshawb nrhiav qhov kev tawm tsam loj heev thiab pheej hmoo qhov tsis zoo no tshwm sim.
Txog tam sim no, feem ntau ntawm kev ua haujlwm tau raug tshuaj xyuas, tab sis kev siv thiab kev ua haujlwm tom qab siv kuj tau pom.
"Microsoft tau pom cov haujlwm suav nrog kev txhim kho cov nyiaj npib miners, Cob alt Strike kom muaj peev xwm ua tub sab nyiag thiab kev txav mus rau sab nraud, thiab tshem tawm cov ntaub ntawv los ntawm kev cuam tshuam, " sau Microsoft Threat Intelligence Center.
Nws tsis yog qhov xav tsis thoob, yog li ntawd, vim qhov yooj yim ntawm kev siv thiab nthuav dav ntawm Log4j, Andrew Morris, Tus tsim thiab CEO ntawm GreyNoise, hais rau Lifewire tias nws ntseeg tias kev ua phem phem yuav nce ntxiv rau ob peb hnub tom ntej no.
Cov xov xwm zoo, txawm li cas los xij, yog tias Apache, cov tsim tawm ntawm lub tsev qiv ntawv tsis zoo, tau tshaj tawm thaj ua rau tsis muaj kev siv dag zog. Tab sis tam sim no nws yog nyob ntawm tus neeg tsim software los kho lawv cov qauv los tiv thaiv lawv cov neeg siv khoom.
Kunal Anand, CTO ntawm cybersecurity lub tuam txhab Imperva, qhia Lifewire hla email tias thaum feem ntau ntawm kev tawm tsam kev tawm tsam siv qhov tsis zoo yog tam sim no qhia rau cov neeg siv lag luam, cov neeg siv kawg yuav tsum tau ceev faj thiab xyuas kom lawv hloov kho lawv cov software cuam tshuam. sai li sai tau raws li thaj chaw muaj.
Qhov kev xav tau hais los ntawm Jen Easterly, Tus Thawj Coj ntawm Cybersecurity thiab Infrastructure Security Agency (CISA).
"Cov neeg siv kawg yuav vam khom rau lawv cov neeg muag khoom, thiab cov neeg muag khoom hauv zej zog yuav tsum tau txheeb xyuas tam sim ntawd, txo qis, thiab kho qhov dav ntawm cov khoom siv no. tias lawv cov khoom muaj qhov tsis zoo no thiab yuav tsum ua qhov tseem ceeb rau kev hloov kho software, "hais Easterly ntawm ib nqe lus.
