{"id":44377,"date":"2021-12-11T04:06:54","date_gmt":"2021-12-11T04:06:54","guid":{"rendered":"https:\/\/www.darkreading.com\/dr-tech\/what-to-do-while-waiting-for-the-log4ju-updates"},"modified":"2021-12-11T04:06:54","modified_gmt":"2021-12-11T04:06:54","slug":"what-to-do-while-waiting-for-the-log4j-updates","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/what-to-do-while-waiting-for-the-log4j-updates\/","title":{"rendered":"What to Do While Waiting for the Log4J Updates"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/beta.darkreading.com\/images\/og-image.jpg\" class=\"ff-og-image-inserted\"><\/div>\n<p>Researchers are warning that attackers are actively exploiting the newly publicized unauthenticated remote code execution vulnerability in Log4j, the Java-based logging tool from Apache. While the bulk of the work to mitigate CVE-2021-44228 falls on application owners and software developers, enterprise security teams also have to do their part to keep their organizations secure.<\/p>\n<p>This Tech Tip provides short-term mitigations for affected enterprise security teams who don\u2019t yet have updates available, can\u2019t install the updates right away for whatever reason, or won\u2019t be receiving updates at all. <\/p>\n<p>Consider the following scenario: a vendor has a financial application that uses Java and the vulnerable version of Log4j. Any organization that uses the client application to access that Java application is also vulnerable to remote code execution since the client is also likely using Log4j. In this scenario, the organization is in a tougher position because it has to wait for the vendor to update both the main application and the client. That could be never for a legacy application.<\/p>\n<p>\u201cAny java application using the affected log4j versions and accessible over the network can be exploited, and many of those applications are likely third-party and out of the user&#8217;s hands administratively,\u201d says Karl Sigler, Senior Security Research Manager, Trustwave SpiderLabs.<\/p>\n<p><strong>Step 1: Identify Exposure<\/strong><\/p>\n<p>The potential <a href=\"https:\/\/github.com\/YfryTchsGD\/Log4jAttackSurface\" target=\"_blank\" rel=\"noopener\">attack surface<\/a> is incredibly large, says Luke Richards, Threat Intelligence Lead at Vectra. <a href=\"https:\/\/github.com\/mubix\/CVE-2021-44228-Log4Shell-Hashes\" target=\"_blank\" rel=\"noopener\">Randori has an application<\/a> that helps check whether the log4j instance is vulnerable. You can search for the presence of JAR files <em>log4j-core-*.jar<\/em> to determine if log4j is in use.<\/p>\n<p>The security flaw (CVE 2021 44228) exists in versions of Log4j before 2.14.1, so any Java application that uses the vulnerable version is at risk. A number of Apache tools are vulnerable &#8212; Struts 2, Solr, Druid, and Fink \u2013 but the issue goes far beyond that list because Java is so widely used in the enterprise. <\/p>\n<p>The number of total scans against the Log4j vulnerability increased three-fold in a single day, <a href=\"https:\/\/www.bitdefender.com\/blog\/labs\/bitdefender-honeypots-signal-active-log4shell-0-day-attacks-underway-patch-immediately\/\" target=\"_blank\" rel=\"noopener\">BitDefender Labs<\/a> says. The figures are based on telemetry from Bitdefender\u2019s global honeypot network. Most of the scans originate from Russia-based IP addresses, the team says. <\/p>\n<p>The initial vector is also difficult to detect because it requires looking through the logs for a specific string, Richards says. Analysts can look at the raw input to the log4j server and alert on all LDAP external connections, or look for external connections from log servers to Java class files, Richards says. The patterns in text fields such as <em>User-Agent: \/\\$\\{jndi:.*\/<\/em>&nbsp; are \u201ctelltale sign of attempts to compromise servers,\u201d Richards says.<\/p>\n<p>Organizations need to identify which of their applications are using the vulnerable component, says Avi Shua, Co-Founder &amp; CEO of Orca Security. One way to do that is with continuous scanning tool. Assets that are external-facing should be blocked. \u201cWe recommend blocking external-facing applications that use the vulnerable library, unless there is certainty that this vulnerability is not exploitable or an updated version is released,\u201d says Shua. <\/p>\n<p><a href=\"https:\/\/gist.github.com\/Neo23x0\/e4c8b03ff8cdf1fa63b7d15db6e3860b\" target=\"_blank\" rel=\"noopener\">Yara rules<\/a><br \/>\nto search for potential compromise attempts have also been released.<\/p>\n<p>Richards recommends finding hosts potentially running log4j (Apache Tomcat and Struts, for example) and moving them into a group to make them easier to monitor and follow up. <\/p>\n<p>In the original scenario, the organization blocked LDAP, and potentially RMI and the CORBA. End users can update with other people in the group, Sigler says. The organization should block LDAP traffic (and potentially RMI and CORBA depending on future variants), and monitor traffic.<\/p>\n<p><strong>Step 2: Apply Mitigations<\/strong><\/p>\n<p>Update to the latest version of Java, as it will prevent loading a remote codebase using LDAP, says Bojan Zdrnja, Senior Instructor at SANS Institute and Chief Technical Officer at INFIGO. \u201cThe current exploitation mechanism is blocked by the latest version of Java, which sets <em>com.sun.jndi.object.trustURLCodebase<\/em> to true,\u201d Zdrnja says.<\/p>\n<p>If <a href=\"https:\/\/www.veracode.com\/blog\/security-news\/urgent-analysis-and-remediation-guidance-log4j-zero-day-rce-cve-2021-44228\" target=\"_blank\" rel=\"noopener\">Log4j cannot be updated<\/a>, setting the <em>log4j2.formatMsgNoLookups<\/em> parameter to true when starting the Java Virtual Machine makes the vulnerability not exploitable, <a href=\"https:\/\/logging.apache.org\/log4j\/2.x\/security.html\" target=\"_blank\" rel=\"noopener\">Apache says in its advisory<\/a>. The command-line option is <em>-Dlog4j.formatMsgNoLookups=true&nbsp;<\/em>. Setting the JVM flag (<em>log4j2.formatMsgNoLookups=true<\/em>) in a component.properties file on the classpath also prevents lookups in log event messages. <\/p>\n<p>Apache also suggests manually removing the JndiLookup class from the <a href=\"https:\/\/www.oracle.com\/java\/technologies\/javase\/8u121-relnotes.html\">classpath<\/a><br \/>\n(<em>zip -q -d log4j-core-*.jar org\/apache\/logging\/log4j\/core\/lookup\/JndiLookup.class<\/em>) to <a href=\"https:\/\/logging.apache.org\/log4j\/2.x\/security.html\">protect against remote code execution<\/a>. Removing the Jndi Manager class from will cause JndiContextSelector and JMSAppender to no longer function. <\/p>\n<p>Specifying <em>%m{nolookups}<\/em> in the PatternLayout configuration prevents lookups in log event messages.<\/p>\n<p>Another option is for the organization to control outbound traffic at the perimeter and block LDAP and RMI traffic, if possible, Zdrnja says.<\/p>\n<p><strong>Step 3: Use Existing Protections<\/strong><\/p>\n<p>The above methods assume that updates will eventually become widespread. In the case of legacy applications, there will not be any updates, security or otherwise. Legacy tools \u201cmust use some kind of other runtime protection,\u201d says Arshan Dabirsiaghi, Co-Founder &amp; Chief Scientist, <a href=\"https:\/\/protect-us.mimecast.com\/s\/N1nnCR6MLxfGVVVkXT9p04W?domain=link.edgepilot.com\/\" title=\"https:\/\/link.edgepilot.com\/s\/64a5038c\/ZDkIPymFvUa246IWsqV6nw?u=http:\/\/www.contrastsecurity.com\/\">Contrast Security<\/a>. An application-level RASP is perhaps the most robust. <\/p>\n<p>WAFs aren\u2019t as effective here because the input might not come from HTTP in modern architectures, the exploit path contains out-of-band elements, and blocking this attack at the perimeter may also end up triggering false positives and disrupting normal traffic, Dabirsiaghi says.<\/p>\n<p>That said, Cloudflare has released <a href=\"https:\/\/blog.cloudflare.com\/cve-2021-44228-log4j-rce-0-day-mitigation\/\" target=\"_blank\" rel=\"noopener\">new signatures for its Firewall<\/a> to block the malicious activity on the application level. The rule block the jndi lookup in common locations in an HTTP request.&nbsp; Other web application firewall vendors are expected to follow suit shortly.<\/p>\n<p><strong>Step 4: Update<\/strong><\/p>\n<p>There is only thing in this step:&nbsp;Apply patches and update as soon as possible.<\/p>\n<p>Read More <a href=\"https:\/\/www.darkreading.com\/dr-tech\/what-to-do-while-waiting-for-the-log4ju-updates\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>This Tech Tip outlines how enterprise defenders can mitigate the risks of the Log4j vulnerabilities for the short-term while waiting for updates.Read More <a href=\"https:\/\/www.darkreading.com\/dr-tech\/what-to-do-while-waiting-for-the-log4ju-updates\">HERE<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[151],"tags":[],"class_list":["post-44377","post","type-post","status-publish","format-standard","hentry","category-darkreading-ti"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>What to Do While Waiting for the Log4J Updates 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/what-to-do-while-waiting-for-the-log4j-updates\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"What to Do While Waiting for the Log4J Updates 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/what-to-do-while-waiting-for-the-log4j-updates\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2021-12-11T04:06:54+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/beta.darkreading.com\/images\/og-image.jpg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-to-do-while-waiting-for-the-log4j-updates\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-to-do-while-waiting-for-the-log4j-updates\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"What to Do While Waiting for the Log4J Updates\",\"datePublished\":\"2021-12-11T04:06:54+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-to-do-while-waiting-for-the-log4j-updates\\\/\"},\"wordCount\":967,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-to-do-while-waiting-for-the-log4j-updates\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/beta.darkreading.com\\\/images\\\/og-image.jpg\",\"articleSection\":[\"DarkReading |TI\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-to-do-while-waiting-for-the-log4j-updates\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-to-do-while-waiting-for-the-log4j-updates\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-to-do-while-waiting-for-the-log4j-updates\\\/\",\"name\":\"What to Do While Waiting for the Log4J Updates 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-to-do-while-waiting-for-the-log4j-updates\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-to-do-while-waiting-for-the-log4j-updates\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/beta.darkreading.com\\\/images\\\/og-image.jpg\",\"datePublished\":\"2021-12-11T04:06:54+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-to-do-while-waiting-for-the-log4j-updates\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-to-do-while-waiting-for-the-log4j-updates\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-to-do-while-waiting-for-the-log4j-updates\\\/#primaryimage\",\"url\":\"https:\\\/\\\/beta.darkreading.com\\\/images\\\/og-image.jpg\",\"contentUrl\":\"https:\\\/\\\/beta.darkreading.com\\\/images\\\/og-image.jpg\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-to-do-while-waiting-for-the-log4j-updates\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"What to Do While Waiting for the Log4J Updates\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"What to Do While Waiting for the Log4J Updates 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/what-to-do-while-waiting-for-the-log4j-updates\/","og_locale":"en_US","og_type":"article","og_title":"What to Do While Waiting for the Log4J Updates 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/what-to-do-while-waiting-for-the-log4j-updates\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2021-12-11T04:06:54+00:00","og_image":[{"url":"https:\/\/beta.darkreading.com\/images\/og-image.jpg","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/what-to-do-while-waiting-for-the-log4j-updates\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/what-to-do-while-waiting-for-the-log4j-updates\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"What to Do While Waiting for the Log4J Updates","datePublished":"2021-12-11T04:06:54+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/what-to-do-while-waiting-for-the-log4j-updates\/"},"wordCount":967,"commentCount":0,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/what-to-do-while-waiting-for-the-log4j-updates\/#primaryimage"},"thumbnailUrl":"https:\/\/beta.darkreading.com\/images\/og-image.jpg","articleSection":["DarkReading |TI"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.threatshub.org\/blog\/what-to-do-while-waiting-for-the-log4j-updates\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/what-to-do-while-waiting-for-the-log4j-updates\/","url":"https:\/\/www.threatshub.org\/blog\/what-to-do-while-waiting-for-the-log4j-updates\/","name":"What to Do While Waiting for the Log4J Updates 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/what-to-do-while-waiting-for-the-log4j-updates\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/what-to-do-while-waiting-for-the-log4j-updates\/#primaryimage"},"thumbnailUrl":"https:\/\/beta.darkreading.com\/images\/og-image.jpg","datePublished":"2021-12-11T04:06:54+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/what-to-do-while-waiting-for-the-log4j-updates\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/what-to-do-while-waiting-for-the-log4j-updates\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/what-to-do-while-waiting-for-the-log4j-updates\/#primaryimage","url":"https:\/\/beta.darkreading.com\/images\/og-image.jpg","contentUrl":"https:\/\/beta.darkreading.com\/images\/og-image.jpg"},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/what-to-do-while-waiting-for-the-log4j-updates\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"What to Do While Waiting for the Log4J Updates"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/44377","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=44377"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/44377\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=44377"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=44377"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=44377"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}