Log4j: Frequently Asked Questions

December 20, 2021|

The Log4j vulnerability that was discovered on Thursday, December 9th, is still a pressing issue for many companies. Since its discovery, we’ve received many questions from customers, most of which we have gathered on this FAQ page. If you have any questions regarding the Log4j vulnerability, you can find the answer to many of them here. This page will be continuously updated as we monitor the development of this situation.

Log4j: Still a code red for the ON2IT CIRT

December 15, 2021|

On Thursday, December 9th a serious vulnerability was discovered in the much-used Apache Log4j Java logging library (Log4j). Through this vulnerability, an unauthenticated, unauthorized RCE (Remote Code Execution) is made possible, which can be used to take over a server. A patch was quickly made available, but executing said patch is proving to be a more complex activity. 

What the hack happened? A CISO perspective on the Microsoft Cosmos bug

August 30, 2021|

Last week’s uproar on the Microsoft Azures database (Cosmos bug) hit the boardroom. A lot of major companies use Microsoft Cloud, so Azure customers were in for a rough surprise. Wiz's Chief Technology Officer Ami Luttwak (his company found the vulnerability) describes it as “the worst cloud vulnerability you can imagine.”

The cloud wars: you ain’t seen nothing yet

March 21, 2019|

In a timespan of ten years, the IT-landscape has changed beyond recognition. Infrastructures that used to cost millions of dollars and took months of implementation are now available within minutes

Information about SamSam ransomware

December 5, 2018|

We inform you about the impact of SamSam ransomware on your organization and how ON2IT can support you by taking corrective measures.