https://community.checkpoint.com/t5/General-Topics/TechTalk-Special-Edition-The-Apache-log4j-Vulnerability/m-p/136328#M24392 <P><SPAN>Apache Log4j is the most popular java logging library with over 400,000 downloads from its GitHub project. It used by a vast number of companies worldwide, enabling logging in a wide set of popular applications. Exploiting this vulnerability is simple and allows threat actors to control java-based web servers and launch remote code execution attacks.</SPAN></P> <P><SPAN>In this CheckMates TechTalk Special Edition, Lotem Finklesteen, Director of Threat Intelligence and Research and Yaniv Shechtman, Head of Product Management, Threat Prevention tell you what you need to know about the log4j vulnerability&nbsp;(CVE-2021-44228, a.k.a. log4shell) and how you can protect your organization.</SPAN></P> <P>See also:</P> <P><A href="https://community.checkpoint.com/t5/General-Topics/Second-Log4j-Vulnerability-CVE-2021-45046-Discovered/m-p/136400#M24399" target="_blank">https://community.checkpoint.com/t5/General-Topics/Protect-yourself-against-a-widely-exploited-vulnerability-CVE/td-p/136079</A></P> <P><A href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk176865" target="_self" rel="noopener noreferrer">SecureKnowledge Article "Check Point response to Apache Log4j Remote Code Execution (CVE-2021-44228)...</A></P> <P><A href="https://blog.checkpoint.com/2021/12/11/protecting-against-cve-2021-44228-apache-log4j2-versions-2-14-1/" target="_self" rel="noopener noreferrer">Check Point Blog Post about the vulnerability</A></P> <P><A href="https://www.checkpoint.com/latest-cyber-attacks/critical-vulnerability-in-apache-log4j/" target="_self" rel="noopener noreferrer">Cyber Pandemic update –&nbsp;Critical vulnerability in Apache Log4j</A></P> <P><A href="https://community.checkpoint.com/t5/General-Topics/Second-Log4j-Vulnerability-CVE-2021-45046-Discovered/m-p/136400#M24399" target="_self"><SPAN>Second Log4j Vulnerability (CVE-2021-45046) Discovered</SPAN></A></P> <P><div class="video-embed-center video-embed"><iframe class="embedly-embed" src="https://cdn.embedly.com/widgets/media.html?src=https%3A%2F%2Fwww.youtube.com%2Fembed%2FN1lka8wgmYQ%3Ffeature%3Doembed&amp;display_name=YouTube&amp;url=https%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3DN1lka8wgmYQ&amp;image=https%3A%2F%2Fi.ytimg.com%2Fvi%2FN1lka8wgmYQ%2Fhqdefault.jpg&amp;type=text%2Fhtml&amp;schema=youtube" width="200" height="113" scrolling="no" title="Apache log4j Vulnerability Explained" frameborder="0" allow="autoplay; fullscreen; encrypted-media; picture-in-picture;" allowfullscreen="true"></iframe></div></P> Thu, 16 Dec 2021 09:26:12 GMT PhoneBoy 2021-12-16T09:26:12Z https://community.checkpoint.com/t5/General-Topics/TechTalk-Special-Edition-The-Apache-log4j-Vulnerability/m-p/136328#M24392 <P><SPAN>Apache Log4j is the most popular java logging library with over 400,000 downloads from its GitHub project. It used by a vast number of companies worldwide, enabling logging in a wide set of popular applications. Exploiting this vulnerability is simple and allows threat actors to control java-based web servers and launch remote code execution attacks.</SPAN></P> <P><SPAN>In this CheckMates TechTalk Special Edition, Lotem Finklesteen, Director of Threat Intelligence and Research and Yaniv Shechtman, Head of Product Management, Threat Prevention tell you what you need to know about the log4j vulnerability&nbsp;(CVE-2021-44228, a.k.a. log4shell) and how you can protect your organization.</SPAN></P> <P>See also:</P> <P><A href="https://community.checkpoint.com/t5/General-Topics/Second-Log4j-Vulnerability-CVE-2021-45046-Discovered/m-p/136400#M24399" target="_blank">https://community.checkpoint.com/t5/General-Topics/Protect-yourself-against-a-widely-exploited-vulnerability-CVE/td-p/136079</A></P> <P><A href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk176865" target="_self" rel="noopener noreferrer">SecureKnowledge Article "Check Point response to Apache Log4j Remote Code Execution (CVE-2021-44228)...</A></P> <P><A href="https://blog.checkpoint.com/2021/12/11/protecting-against-cve-2021-44228-apache-log4j2-versions-2-14-1/" target="_self" rel="noopener noreferrer">Check Point Blog Post about the vulnerability</A></P> <P><A href="https://www.checkpoint.com/latest-cyber-attacks/critical-vulnerability-in-apache-log4j/" target="_self" rel="noopener noreferrer">Cyber Pandemic update –&nbsp;Critical vulnerability in Apache Log4j</A></P> <P><A href="https://community.checkpoint.com/t5/General-Topics/Second-Log4j-Vulnerability-CVE-2021-45046-Discovered/m-p/136400#M24399" target="_self"><SPAN>Second Log4j Vulnerability (CVE-2021-45046) Discovered</SPAN></A></P> <P><div class="video-embed-center video-embed"><iframe class="embedly-embed" src="https://cdn.embedly.com/widgets/media.html?src=https%3A%2F%2Fwww.youtube.com%2Fembed%2FN1lka8wgmYQ%3Ffeature%3Doembed&amp;display_name=YouTube&amp;url=https%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3DN1lka8wgmYQ&amp;image=https%3A%2F%2Fi.ytimg.com%2Fvi%2FN1lka8wgmYQ%2Fhqdefault.jpg&amp;type=text%2Fhtml&amp;schema=youtube" width="200" height="113" scrolling="no" title="Apache log4j Vulnerability Explained" frameborder="0" allow="autoplay; fullscreen; encrypted-media; picture-in-picture;" allowfullscreen="true"></iframe></div></P> Thu, 16 Dec 2021 09:26:12 GMT https://community.checkpoint.com/t5/General-Topics/TechTalk-Special-Edition-The-Apache-log4j-Vulnerability/m-p/136328#M24392 PhoneBoy 2021-12-16T09:26:12Z