Log4j vulnerability used to attack energy companies in Canada, US and Japan

North Korean state-sponsored hackers, known as the Lazarus Group, are exploiting the previous year’s Log4j vulnerability on exposed VMware Horizon servers to target energy companies in the US, Canada, and Japan. Researchers at Cisco warned the attacks aim to establish long-term access to victims’ networks to conduct espionage operations, warning that organisations could be dealing with Log4j exposure for many more years. The US’s CISA ranks Log4j in its top 15 routinely exploited vulnerabilities of 2021.