Zero Day in Ubiquitous Apache Log4j Tool Under Active Attack


Anyone who uses the popular opensource Apache Struts framework is at risk from the Log4Shell vulnerability, which might result in a little internet meltdown soonish.

An excruciatingly easytoexploit bug in the widely used Java logging library Apache Log4j might allow unauthenticated remote code execution (RCE) and complete server takeover, and it’s already been exploited.

Read More…