Apache (Log4j2) Data Breach
Apache (Log4j2) experienced a data breach that was reported on December 10, 2021. Apache Log4j2 contains a vulnerability where JNDI features do not protect against attacker-controlled JNDI-related endpoints, allowing for remote code execution.
Key Facts
- Organization
- Apache (Log4j2)
- Date Reported
- December 10, 2021
- Incident Type
- ransomware
- Industry
- Technology
- Severity Score
- 6/10
- Confidence Level
- high
- Tags
Source
View original source - External link to primary source documentation
Understanding ransomware Incidents
Ransomware attacks encrypt organizational data and demand payment for recovery. They often involve data exfiltration before encryption, enabling double extortion. Organizations should maintain offline backups and incident response plans.