Skip to content
cropped-webiste-logo_edited.png

Primary Menu
  • Home
  • Bible Guide
  • RESOURCES
  • LinkTree
  • TARGET ACQUIRED – False Teachers
  • LINKS
  • Software
  • Home
  • 2021
  • December
  • 11
  • Tech Firms race to fix software flaw

Tech Firms race to fix software flaw

Mike December 11, 2021

Share this:

  • Share on Facebook (Opens in new window) Facebook
  • Share on Threads (Opens in new window) Threads
  • Share on X (Opens in new window) X
  • Print (Opens in new window) Print
  • Email a link to a friend (Opens in new window) Email
  • More
  • Share on WhatsApp (Opens in new window) WhatsApp
  • Share on Telegram (Opens in new window) Telegram
  • Share on Reddit (Opens in new window) Reddit
  • Share on Bluesky (Opens in new window) Bluesky
  • Share on Tumblr (Opens in new window) Tumblr
  • Share on Pinterest (Opens in new window) Pinterest
  • Share on Mastodon (Opens in new window) Mastodon

A critical vulnerability in a widely used software tool — one quickly exploited in the online game Minecraft — is rapidly emerging as a major threat to organizations around the world.

“The internet’s on fire right now,” said Adam Meyers, senior vice president of intelligence at the cybersecurity firm Crowdstrike. “People are scrambling to patch,” he said, “and all kinds of people scrambling to exploit it.” He said Friday morning that in the 12 hours since the bug’s existence was disclosed that it had been “fully weaponized,” meaning malefactors had developed and distributed tools to exploit it.

The flaw may be the worst computer vulnerability discovered in years. It was uncovered in a utility that’s ubiquitous in cloud servers and enterprise software used across industry and government. Unless it is fixed, it grants criminals, spies and programming novices alike easy access to internal networks where they can loot valuable data, plant malware, erase crucial information and much more.

“I’d be hard-pressed to think of a company that’s not at risk,” said Joe Sullivan, chief security officer for Cloudflare, whose online infrastructure protects websites from malicious actors. Untold millions of servers have it installed, and experts said the fallout would not be known for several days.

Amit Yoran, CEO of the cybersecurity firm Tenable, called it “the single biggest, most critical vulnerability of the last decade” — and possibly the biggest in the history of modern computing.

The vulnerability, dubbed ‘Log4Shell,’ was rated 10 on a scale of one to 10 the Apache Software Foundation, which oversees development of the software. Anyone with the exploit can obtain full access to an unpatched computer that uses the software,

Experts said the extreme ease with which the vulnerability lets an attacker access a web server — no password required — is what makes it so dangerous.

New Zealand’s computer emergency response team was among the first to report that the flaw was being “actively exploited in the wild” just hours after it was publicly reported Thursday and a patch released.

The vulnerability, located in open-source Apache software used to run websites and other web services, was reported to the foundation on Nov. 24 by the Chinese tech giant Alibaba, it said. It took two weeks to develop and release a fix.

But patching systems around the world could be a complicated task. While most organizations and cloud providers such as Amazon should be able to update their web servers easily, the same Apache software is also often embedded in third-party programs, which often can only be updated by their owners.

Yoran, of Tenable, said organizations need to presume they’ve been compromised and act quickly.

The first obvious signs of the flaw’s exploitation appeared in Minecraft, an online game hugely popular with kids and owned by Microsoft. Meyers and security expert Marcus Hutchins said Minecraft users were already using it to execute programs on the computers of other users by pasting a short message in a chat box.

Microsoft said it had issued a software update for Minecraft users. “Customers who apply the fix are protected,” it said.

Researchers reported finding evidence the vulnerability could be exploited in servers run by companies such as Apple, Amazon, Twitter and Cloudflare.

Cloudflare’s Sullivan said there we no indication his company’s servers had been compromised. Apple, Amazon and Twitter did not immediately respond to requests for comment.

Like this:

Like Loading…

Post navigation

Previous: 7 Times Rock Bands Were Sued By Album Cover Models
Next: How to LACE ARMY BOOTS – 5 MILITARY BOOT LACING Styles

Related Stories

ghfghfg

The Microprocessor turns 55, Thanks in large part to 3 Intel Engineers

Mike November 16, 2025
linus torvaldes

Linux, Linus and the personal OS that never really caught on

Mike August 25, 2025
steve jobs stanford

Steve Jobs 2005 Stanford Commencement Speech

Mike April 30, 2022
Log in

Abortion adoption Anglican bible business california china Christ christian Christmas church church of england cofe college football Coronavirus covid covid-19 dogs episcopal church Florida food football fsu god gospel hurricane Jesus john macarthur lawsuit los angeles nfl orlando pets Politics pope recipe religion roman catholic salvation sbc seminoles target acquired Thanksgiving unemployment Weather

  • How the Local Church Can Effectively Train and Send Missionaries
  • 6 Reasons to Study the Bible
  • What Does It Mean to Pick Up Your Cross and Follow Jesus? (Mark 8)
  • 10 Purposes for Our Suffering Found in 2 Corinthians
  • A Biblical Theology of the Holy Spirit
  • Matthew 23 (Secret)
  • Psalms 149-150 (Family)
  • Jeremiah 9 (Secret)
  • Joshua 18-19 (Family)
  • Jonah 4:9 - Morning Devotional for Jul. 13th
  • jude 1 - Morning Devotional for Jul. 12th
  • 1 Peter 5:10 - Morning Devotional for Jul. 11th
  • Ephesians 2:19 - Morning Devotional for Jul. 10th
  • Psalms 103:2 - Morning Devotional for Jul. 9th
  • 2 Timothy 4:18 - Evening Devotional for Jul. 12th
  • Joel 1:3 - Evening Devotional for Jul. 11th
  • Genesis 1:5 - Evening Devotional for Jul. 10th
  • Genesis 1:4 - Evening Devotional for Jul. 9th
  • Psalms 25:5 - Evening Devotional for Jul. 8th

RECENT:

  • Pastor Douglas Wilson Explains to NPR Why He Wants To Repeal Women’s Right To Vote
  • Do Anglicans believe in the rapture?
  • The Revision of the 1928 Book of Common Prayer: An Argument for Its Unnecessity
  • One Nation Under God
  • Roman Catholic Apologist Jimmy Aiken says Gospel of John Was Written MUCH Earlier Than Scholars Say

December 2021
M T W T F S S
 12345
6789101112
13141516171819
20212223242526
2728293031  
« Nov   Jan »
Copyright 2026 © All rights reserved. | MoreNews by AF themes.
%d