December 22, 2021 — Eric Swotinsky
Incident reports

Log4Shell attacks on the rise

Acronis Cyber Protect Cloud

The Belgian Defense Ministry and organizations running VMware vCenter Servers are being actively attacked via the Log4Shell vulnerability.

Log4Shell is a severe vulnerability in Apache's widely used Log4j library for Java, currently affecting millions of devices around the world. Researchers continue to identify new risks related to this exploit; VMware is known to have 40 products vulnerable to it.

A spokesperson for the Belgian Defense ministry says they were able to isolate affected portions of their network to stay operational, but cybersecurity researchers are already observing attacks on VMware vCenter Servers. The notorious Conti ransomware gang appears to be behind the latter.

The best course of action against these attacks is to make sure your software is running the latest security fixes. Acronis Cyber Protect's automated patch management keeps your infrastructure up-to-date and safe against the latest threats.