On Dec 09, 2021, Apache Software Foundation disclosed a zero-day vulnerability in the popular Log4J lo”ing library that would allow adversaries to remotely execute code on affected systems. As security teams sprang into action over the weekend to patch the vulnerability, we started tracking our global mesh of decoys that intercepted adversaries exploiting the vulnerability against our deceptive assets. Within two hours of the vulnerability being disclosed, we started seeing widespread attempts to exploit it, targeting specific customers across our decoy network.
Deceiving Log4Shell
