The UK’s National Health Service (NHS) has warned that hackers are actively targeting Log4J vulnerabilities and is recommending organizations within the health service to install the updates necessary to protect themselves.

An expert opinion from NHS Digital states that an “unknown threat group” is attempting to exploit a Log4j vulnerability (CVE-2021-44228) in VMware Horizon servers to set up web shells that could be used to target malware, ransomware distribute, steal sensitive information, and other malicious attacks.

It is unclear whether the warning was issued because attacks on NHS systems were detected or whether the warning was published as a general precaution due to the ongoing problem of the critical vulnerability in the Apache Log4j Java logging library, which became known in December .

“We are aware of an exploit and are actively monitoring the …



Source link

Leave a Reply