Video

Log4j Zero-Day Threat Hunts

 

Apache Log4j is a Java logging framework widely used in commercial and open-source software. Log4j is known to have a critical zero-day vulnerability, which can be easily exploited by threat actors.

In this video, Ryan Westman, Sr. Manager of Threat Intelligence, shares how our eSentire Threat Response Unit (TRU) immediately took action when the vulnerability was disclosed. Upon reviewing the Proof-of-Concept exploit code, TRU kicked off the topic tracking process for this vulnerability, collecting valuable threat intelligence.

Within 24 hours of the Log4j vulnerability being observed, TRU released a security advisory. Soon after, new detection rules were added to MDR for Log and pushed out to all customers, helping to identify, investigate and block exploitation activities.

Watch The Video