The worst hack in the history of the internet aside from Wannacry and Solarwinds. Caused by a vulnerability in a Minecraft server on December the 1st 2021.
it is code to exploit CVE-2021-44228, a critical security vulnerability in Log4j from 2.0-beta9 to 2.15.0-ish, excluding 2.12.2. Beware of two other vulnerabilities in Log4j 2, CVE-2021-45046 and CVE-2021-45105. Why is it so bad? Because an attacker can send a special string to a Java application that uses a vulnerable Log4j version, then Log4j processes this string, and downloads/executes a malicious payload from another endpoint.
The Log4Shell has been discovered in various other parts of the internet causing planned outages by governments to try and stop the spread of the vulnerability on their systems which could cause sophisticated ransomware attacks. Canada Revenue Agency offline as precaution due to global 'security vulnerability'
It didn’t start with Minecraft, the tech supergiant, Alibaba which is a lot like Amazon but a large portion of the user base is in Asia discovered the vulnerability on the 24th of November.
More details about the patches can be found here
<script async src="https://platform.twitter.com/widgets.js" charset="utf-8"></script>In the case of Minecraft, attackers were able to get remote code execution on Minecraft Servers by simply pasting a a short message into the chat box.
— Marcus Hutchins (@MalwareTechBlog) December 10, 2021
<script async src="https://platform.twitter.com/widgets.js" charset="utf-8"></script>Explaining #log4j for non technical people, because the internet is burning down and y'all might want to know what's happening and why there's all this "${jndi:ldap" stuff out there#Log4Shell #log4jRCE
— Emy | eq 🌈 (@entropyqueen_) December 11, 2021
⬇️
https://twitter.com/Naaackers/status/1471494415306788870/