What happened?
A security flaw labeled CVE-2021-44228
has dominated global headlines over the past week, with millions of systems affected by this critical vulnerability and causing governments and enterprises across the world to shut down their systems. The library containing the security flaw, called Apache Log4J
is developed by the open-source Apache Software Foundation and is a key Java-logging framework.
Warnings have been issued by several national cybersecurity agencies, including the Cybersecurity and Infrastructure Security Agency (CISA) and the UK's National Cyber Security Centre (NCSC). Basically any device that's exposed to the internet is at risk if it's running Apache Log4J, versions 2.0 to 2.14.1. NCSC notes that Log4j version 2 (Log4j2), the affected version, is included in Apache Struts2, Solr, Druid, Flink, and Swift frameworks.
Many companies are experiencing attacks leveraging the vulnerability; security platform Armis told ZDNet that it detected log4shell
attack attempts in over a third of its clients (35%). Attackers are targeting physical servers, virtual servers, IP cameras, manufacturing devices, and attendance systems.
A second vulnerability in Apache Log4J, labeled CVE-2021-45056
has been discovered today.
The main advice to anyone operating an internet-facing device or service is to identify internet-facing devices running Log4j and upgrade them to version 2.15.0, or to apply the mitigations provided by vendors "immediately". But it also recommends setting up alerts for probes or attacks on devices running Log4j.
Is KUY.io Konnect™ Affected?
Neither KUY.io Konnect™, nor any of it's dependencies make use of the Apache Log4J libraries. As such KUY.io Konnect™ is not affected by this vulnerability.
As part of our left shift to security we introduced automated vulnerability scanning for our application and the final application (Docker) images that we publish to our customers in an effort to identify and mitigate vulnerabilities as they emerge, so we can provide our customers with the best enterprise VPN solution on the market.