Twitter Feed
@bascule ("Tony "Abolish ICE" Arcieri 🦀🌹") wrote:
Here come the Log4j worms
with quote tweet:
@Laughing_Mantis ("Greg Linares") wrote:
#Log4J Worm is ITW
@vxunderground has a sample of the self propagating worm using log4j as a vector.
It installs a Mirai bot which makes sense to targeting embedded Linux devices
Looks like it uses user-agent for exploitation and modifies the binary before sending (?)