Cyber Pandemic Update –
Critical Vulnerability in Apache Log4j
Are you affected by the Log4j vulnerability?
Everything you need to know about this vulnerability, including how to stay protected, and how it is evolving worldwide.
Watch our webinar and read below to learn more.
WATCH ON DEMANDTo get immediate support from our Incident Response Team on Log4j CLICK HERE
Contact Us
For any questions or inquiries concerning the Log4j vulnerability please email
Log4j@checkpoint.com
30 Days Free AppSec & Free Lifetime Protection Against Log4j Exploits
The Only Security Solution Which Pre-Emptively Prevented the Log4j Exploit!
GET IT NOW
Scan Now for Log4j Vulnerabilities
A fully automated and extensive scanner for finding vulnerable log4j public hosts
SCAN NOW
Apache Log4j Vulnerability – what do you need to know?
Apache Log4j is the most popular java logging library with over 400,000 downloads from its GitHub project. It used by a vast number of companies worldwide, enabling logging in a wide set of popular applications. Exploiting this vulnerability is simple and allows threat actors to control java-based web servers and launch remote code execution attacks. Read more insights from our Check Point Research team
READ MOREWhat you need to do to stay protected with Check Point Infinity
Check Point Infinity powered by Threat Cloud and AI-based prevention provides protection against the Log4j Vulnerability. Read more on how to stay protected.
READ MOREThe numbers behind a cyber pandemic – detailed dive
Precisely one year after the SolarWinds Hack, the groundbreaking supply chain attack the world experienced, and while organizations are still struggling to protect the software supply chain from third-party risk, the Apache Log4j vulnerability exploit has caught security teams during a weekend.
READ MORETechTalk Special Edition: What you need to know about log4j and how to protect your organization
In this CheckMates TechTalk Special Edition, Lotem Finklesteen, Director of Threat Intelligence and Research and Yaniv Shechtman, Head of Product Management, Threat Prevention tell you what you need to know about log4j and how you can protect your organization.
WATCH VIDEOHow to protect web applications from the Log4j vulnerability
CloudGuard AppSec is the only solution providing pre-emptive protection for your web applications against the Log4j vulnerability. CloudGuard AppSec protects against these kinds of attacks out of the box with zero-day protection when set to Prevent Mode. CloudGuard AppSec is powered by AI, with no signature matching or manual updates to the security.
READ MORE FREE PROTECTIONLog4j vulnerability protection for endpoints
Check Point implemented dedicated detection and prevention enhancements to Harmony Endpoint to ensure full protection against log4j related attacks and to accelerate detection and investigate vulnerable endpoints.
READ MOREA deep dive into a real-life Log4j exploitation
Check Point Research recently detected numerous attacks exploiting the Log4j vulnerability, involving the mining of cryptocurrencies.
LEARN MORE HEREThe Laconic Log4Shell FAQ
Log4shell: Why is it such a big deal? What mitigations are available? Why are there so many complicated exploit variants? This piece surveys how we got here, and how we might avoid repeating history.
LEARN MORELog4j – A true cyber pandemic
When we discussed the Cyber pandemic, this is exactly what we meant. It is clearly one of the most serious vulnerabilities on the internet in recent years.
Check Point Research witnessed new variations of the original exploit being introduced rapidly- over 60 in less than 24 hours.
Since we started to implement our protection we prevented over 845,000 attempts to allocate the vulnerability, over 46% of those attempts were made by known malicious groups.