Connect with us

News

Log4j Vulnerably To Wreak Havoc On The Internet For Years To Come

Because of how widespread Log4j is, experts estimate that it may take years to hunt down all vulnerable instances and patch them.

Published

on

log4j vulnerability to wreak havoc on the internet for years to come

As if one pandemic wasn’t enough, there’s now also a cyber-pandemic whose scale is increasing at an exponential rate. The cause of this digital pandemic is a zero-day vulnerability in Java-based logging utility called Log4j. This open-source software allows software developers to log data within their applications, and it has been widely used since its release in 2001.

The vulnerability was disclosed on December 9 by the Alibaba Cloud Security Team, which named it Log4Shell (CVE-2021-44228). Two days later, cybersecurity company Tenable described it as “the single biggest, most critical vulnerability of the last decade”.

Since then, the vulnerability has affected many major tech players, including Amazon Web Services, Adobe, Broadcom, Cisco, Docker, F-Secure, IBM, Juniper Networks, Oracle, Red Hat, Siemens, SolarWinds, Sophos, Ubiquiti, Zoho, and others.

“It’s ubiquitous” said Chris Eng, chief research officer at cybersecurity firm Veracode, in an interview for CNN Business. Even if you’re a developer who doesn’t use Log4j directly, you might still be running the vulnerable code because one of the open-source libraries you use depends on Log4j”.

In addition to affecting large swaths of the global IT infrastructure, the Log4Shell vulnerability is also extremely severe because it involves arbitrary code execution. In other words, it makes it possible for attackers to make the vulnerable system do anything they want.

That’s why the Cybersecurity and Infrastructure Security Agency (CISA), the Canadian Centre for Cyber Security (CCCS), and Germany’s Bundesamt für Sicherheit in der Informationstechnik (BSI) have all called on organizations to take on immediate action and install the available fixes, which were released three days before the vulnerability was published.

Also Read: How To Enable WhatsApp Disappearing Messages For All Chats

Still, attackers have already successfully exploited the vulnerability to steal sensitive data, extract system credentials, install backdoors, and run crypto miners. Some of the largest botnets in the world are now scanning for the vulnerability, and almost half of all corporate networks have already been probed.

Because of how widespread Log4j is, experts estimate that it may take years to hunt down all vulnerable instances and patch them. Until that happens, cybercriminals will be on a hunt as well, ready to exploit them.

Advertisement

📢 Get Exclusive Monthly Articles, Updates & Tech Tips Right In Your Inbox!

JOIN 21K+ SUBSCRIBERS

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

News

Stake Powers Instant Payouts With Checkout.com Pay To Card

The new feature lets investors in the UAE, KSA, and UK receive real estate returns in minutes — cutting withdrawal times to under 10 minutes.

Published

on

stake powers instant payouts with checkout.com pay to card

Stake, a leading digital real estate investment platform, has unveiled Pay to Card, a next-generation withdrawal feature built on Checkout.com’s global payment infrastructure. The integration enables investors to have dividends and returns credited directly to their bank cards — often within minutes — dramatically reducing the traditional multi-day payout process.

After a successful pilot in May involving over 200 users, some investors reported receiving their funds in under 10 minutes. Ricardo Brizido, CPTO and Co-Founder of Stake, emphasized the importance of speed and reliability: “With Pay to Card, we’re eliminating unnecessary delays and putting returns in our investors’ hands almost instantly. This feature was built to directly solve one of the most common pain points in real estate investing, and it’s already driving strong results”.

The feature launch coincides with rapid growth in real-time finance across the Middle East. Checkout.com’s “State of Digital Commerce in MENA 2025” report highlights a 388% year-on-year surge in Account Funding Transactions (AFTs) in the UAE, reflecting strong demand for immediate payout solutions. The same study recorded a 176% increase in total processing volume from 2023 to 2024 and noted that daily online transactions have jumped 320% since 2020.

Since its 2021 debut, Stake has facilitated over AED 1 billion in property transactions, advancing its mission to democratize real estate investment in high-growth markets. By integrating Pay to Card, Stake reinforces its commitment to customer-centric innovation and operational transparency.

Also Read: Binance Enters Syrian Market As Sanctions Lifted

Remo Giovanni Abbondandolo, General Manager for MENA at Checkout.com, praised the collaboration: “Stake has always led with customer-first financial experiences. Together, we’re meeting the expectations of a region that is no longer just digital-first, but real-time-first. Pay to Card exemplifies how modern payment infrastructure can directly solve investor pain points”.

Pay to Card is now available to all Stake users in the United Arab Emirates, the Kingdom of Saudi Arabia, and the United Kingdom. By slashing withdrawal times from days to minutes, Stake and Checkout.com are setting a new standard for seamless, on-demand real estate investing.

Continue Reading

#Trending