B1txor20 is assembling its army of bot on Linux machines. It is exploiting the Log4j vulnerable systems to gain access and maintain foothold.
Khonsari Ransomware exploit Log4j's Log4Shell vulnerability to inject malicious java class which in turns download the ransomware's .net executable.
TellYouThePass ransomware was an old dormant ransomware supposed to be dead. But Log4j's Log4Shell vulnerability, resurrect it and it jumps into action once again. It targets mostly Chinese speaking population.
Apache Log4j is a Java-based logging utility. The Log4j vulnerability also know as Log4Shell is tracked as CVE-2021-44228. It was disclosed last week by LunaSec researchers.
Log4Shell is an Remote Code Execution (RCE) vulnerability (CVE-2021-44228) in one of the most used enterprise Logging product Apache Log4j. Its affecting Apache Log4j versions 2.0 through 2.14.1.