Pretty big this one, huh? People losing their heads a bit about it at work.
The flaw is exposing some of the world’s most popular applications and services to attack, and the outlook hasn’t improved since the vulnerability came to light on Thursday. If anything, it’s now excruciatingly clear that Log4Shell will continue to wreak havoc across the internet for years to come.
Did a search for log4j and there were no results, so assuming that there’s been no chat about this already.
I think the sum total of my online data just culminates in a stick figure with a crudely handwritten list of personal attributes below reading “sad, horny, likes most puddings”
currently switched all backups to physical harddrives and removed them from home network coz you just know eg Seagate are going to do an announcement before long
Vendors with popular products known to be still vulnerable include Atlassian, Amazon, Microsoft Azure, Cisco, Commvault, ESRI, Exact, Fortinet, JetBrains, Nelson, Nutanix, OpenMRS, Oracle, Red Hat, Splunk, Soft, and VMware. The list is even longer when adding products where a patch has been released.