Munguva pfupi yapfuura takataura nezvekutadza kweLog4J uye mubhuku rino tinoda kugovera ruzivo rwekuti vaongororikubvira vanoti matsotsi, kusanganisira mapoka anotsigirwa nenyika yeChina asiwo neRussia, vatanga kurwiswa kunopfuura zviuru mazana masere nemakumi mana. kurwisa makambani pasi rese kubva neChishanu chapfuura kuburikidza nekusagadzikana uku.
Iro cybersecurity group Check Point yakati kurwisa kwakabatana nekusagadzikana kwavakanga vawedzera mumaawa makumi manomwe nemaviri kubvira Chishanu, uye dzimwe nguva vaongorori vavo vaiona kurwiswa kunopfuura zana paminiti.
Mupepeti wacho akacherechedzawo unyanzvi hukuru mukugadzirisa kurwisa. Dzimwe nguva misiyano mitsva inodarika makumi matanhatu inooneka mumaawa asingasviki makumi maviri nemana, ichiunza nzira itsva dzekubfuscation kana kukodha.
"Varwi vehurumende yeChinese" vanonzi vari kuverengerwa, sekureva kwaCharles Carmakal, mukuru wetekinoroji wekambani yecyber Mandiant.
Iyo Log4J kukanganisa inobvumira vanorwisa kutora kure kure kudzora kwemakomputa anomhanyisa Java application.
Jen kumabvazuva, mutungamiriri weUnited States Cyber uye Infrastructure Security Agency (CISA), akadaro kuvakuru vemaindasitiri izvo Kusagadzikana kwaive "chimwe chezvinhu zvakakomba zvandakaona mubasa rangu rose, kana zvisiri izvo zvakanyanya", maererano neAmerican media. Mazana emamiriyoni emidziyo anogona kunge akakanganiswa, akadaro.
Check Point yakataura kuti muzviitiko zvakawanda, matsotsi anotora makomputa uye oashandisa kuchera cryptocurrencies kana kuita chikamu chebotnets, ine yakakura macomputer network ayo anogona kushandiswa kuremedza webhusaiti traffic, kutumira spam, kana kune vamwe zvisiri pamutemo zvinangwa.
KuKaspersky, kurwiswa kwakawanda kunobva kuRussia.
CISA neUK's National Cyber Security Center yakapa yambiro ichikurudzira masangano kuti agadzirise zvine chekuita nekusagadzikana kweLog4J, sezvo nyanzvi dzinoyedza kuongorora mhedzisiro.
Amazon, Apple, IBM, Microsoft, uye Cisco ndevamwe vari kumhanyira kuburitsa mhinduro, asi hapana kutyora kwakakomba kwakataurwa pachena kusvika.
Kusagadzikana ndiko kwazvino kukanganisa makambani network, mushure mekusagadzikana kwakabuda mugore rapfuura mune zvakajairika-kushandisa software kubva kuMicrosoft uye komputa kambani SolarWinds. Kusagadzikana kwese kunonzi kwakatanga kushandiswa nemapoka evasori anotsigirwa nehurumende kubva kuChina neRussia, zvichiteerana.
Mandiant's Carmakal akati vatambi vekuChina vanotsigirwa nehurumende vari kuyedzawo kushandisa Log4J bug, asi akaramba kugovera rumwe ruzivo. SentinelOne vaongorori vakaudzawo vezvenhau kuti vaona matsotsi ekuChina achitora mukana wekusagadzikana.
CERT-FR inokurudzira kunyatsoongororwa kwetiweki matanda. Zvikonzero zvinotevera zvinogona kushandiswa kuona kuedza kushandisa kusazvibata uku kana kuchishandiswa mumaURL kana mamwe misoro yeHTTP semushandisi-mumiriri.
Inokurudzirwa kushandisa log2.15.0j version 4 nokukurumidza sezvinobvira. Nekudaro, kana zvichinetsa kutamira kune iyi vhezheni, zvinotevera mhinduro dzinogona kushandiswa kwenguva pfupi:
Kumaapplications anoshandisa vhezheni 2.7.0 uye gare gare log4j library, zvinogoneka kudzivirira pane chero kurwiswa nekugadzirisa mafomati ezviitiko zvichange zvakarogwa ne syntax% m {nolookups} yedata raizopihwa nemushandisi. .
Inenge hafu yekurwiswa kwese kwakaitwa nevanozivikanwa cyber attackers, maererano Check Point. Izvi zvaisanganisira mapoka anoshandisa Tsunami neMirai, malware anoshandura midziyo kuita botnets, kana network inoshandiswa kutanga kurwisa kure, sekuramba kurwiswa kwebasa. Yaisanganisirawo mapoka anoshandisa XMRig, software inoshandisa iyo Monero digital currency.
"Nekusagadzikana uku, vanorwisa vanowana simba risingaperi: vanogona kutora zvakavanzika data, kuisa mafaera kuseva, kudzima data, kuisa ransomware kana kushandura kune mamwe maseva," akadaro Nicholas Sciberras, mukuru weAcunetix engineering, vulnerability scanner. "Zvaive nyore zvinoshamisa" kuita kurwisa, akadaro, achiwedzera kuti kukanganisa kwacho "kuchashandiswa mumwedzi mishoma inotevera."