Press Release

How ransomware attackers leverage Log4Shell

“Several days into the discovery of Log4Shell and already we’re seeing reports of state-sponsored groups as well as the group behind the Khonsari ransomware, leveraging Log4Shell as part of its attack campaign. It’s worth noting that the initial report is that the Khonsari ransomware is not extremely sophisticated. It is a first level effort, and it does its job to encrypt files. While this is the first known instance of ransomware leveraging Log4Shell, it won’t be long before we hear about attacks launched by affiliates of more prolific ransomware groups leveraging this flaw in the near future.” — Satnam Narang, staff research engineer, Tenable

Leave a Response