It has been more than a year since Apache released details on a critical vulnerability in Log4j, which made headlines and impacted organizations around the world, however threat actors are still exploiting it. This time through proxyjacking.
In a report released yesterday, the Sysdig’s Threat Research (TRT) has detected a new attack, dubbed proxyjacking, which leverages the Log4j vulnerability for initial access.