Hackers start pushing malware in worldwide Log4Shell attacks

Threat actors are exploiting the Log4j Log4Shell vulnerability to deploy malware and find vulnerable servers. The exploit allows attackers to pass commands or Java classes to execute on vulnerable devices, also enabling them to determine if a server is susceptible to the vulnerability. Malware utilising Log4j includes cryptominers, Mirai and Muhstik botnets and Cobalt Strike beacons. Additionally, the exploit is being used to scan for vulnerable servers and exfiltrate information.