{"id":51338,"date":"2023-04-05T15:36:01","date_gmt":"2023-04-05T15:36:01","guid":{"rendered":"https:\/\/packetstormsecurity.com\/news\/view\/34499\/Log4j-Bug-Abused-In-New-Proxyjacking-Attacks-To-Resell-Bandwidth-Abuse-Enterprise-Cloud.html"},"modified":"2023-04-05T15:36:01","modified_gmt":"2023-04-05T15:36:01","slug":"log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\/","title":{"rendered":"Log4j Bug Abused In New Proxyjacking Attacks To Resell Bandwidth , Abuse Enterprise Cloud"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/files.scmagazine.com\/wp-content\/uploads\/2023\/04\/bandwidth-bandit.jpg\" class=\"ff-og-image-inserted\"><\/div>\n<p>The Log4j vulnerability is being targeted in new malicious campaigns dubbed &#8220;proxyjacking&#8221; where adversaries attempt to install the legitimate network segmentation tool called proxyware on unsuspecting victims in order to resell a target&#8217;s bandwidth for up to $10 a month.<\/p>\n<p>Sysdig\u2019s Threat Research Team, which identified the technique, said adversaries are targeting millions of systems still vulnerable to the Log4j vulnerability. Citing Censys in its research, Sysdig reports 23,000 unpatched systems are vulnerable to the Log4j bug and reachable via the public internet.<\/p>\n<p>&#8220;Log4j is not the only attack vector for deploying proxyjacking malware, but this vulnerability alone could theoretically provide more than $220,000 in profit per month,&#8221; Sysdig researchers wrote in a report <a href=\"https:\/\/sysdig.com\/blog\/proxyjacking-attackers-log4j-exploited\/\" target=\"_blank\" rel=\"noreferrer noopener\">outlining the attack on Tuesday<\/a>.<\/p>\n<p>Proxyjacking abuses non-malicious third-party services marketed primarily to residential internet customers, which allow customers to resell a portion of their &#8220;unused&#8221; bandwidth. These services, that go by the names Pawns, IPRoyal and Peer2Profit, pay users up to $10 a month. The bandwidth is resold to a variety of customers who pay to use an internet protocol (IP) address and bandwidth for a variety of things including accessing streaming content that may be blocked in geographic regions.&nbsp;<\/p>\n<h2>Cloud infrastructure targeted<\/h2>\n<p>&#8220;In the proxyjacking attack that the Sysdig TRT discovered, an attacker targeted Kubernetes infrastructure, specifically an unpatched Apache Solr service, in order to take control of the container and proceed with their activities,&#8221; researchers wrote.<\/p>\n<p>Sysdig did not designate attribution to those carrying out the proxyjacking attacks and did not outline the scope of the attacks, timeline or specific targets or geographic regions impacted.<\/p>\n<p>As <a rel=\"noreferrer noopener\" href=\"https:\/\/www.trendmicro.com\/en_us\/research\/23\/b\/hijacking-your-bandwidth-how-proxyware-apps-open-you-up-to-risk.html\" target=\"_blank\">Trend Micro<\/a> explained in a recent post, while non-malicious bandwidth reselling services have guidelines and tools restricting abuse, the services have been abused in the past. Those abuses didn&#8217;t involve exploiting vulnerable Log4j instances, rather they have been tied to click-fraud campaigns and driving traffic to malvertising sites designed to enroll victims in without their consent. Payouts to customers are then routed to attackers.<\/p>\n<p>The Log4j vulnerability represents a new attack vector for bandwidth bandits, according to Sysdig. Adversaries can skip creating a ruse to lure victims and instead programatically scan the internet for unpatched instances of the Apache Log4j library, which allow for remote code execution attacks.<\/p>\n<h2>Abuse hard to stop<\/h2>\n<p>Proxyjacking could net an attacker an income of about $9.60 a month for 24 hours of activity for one IP address. Deploying proxyware via Log4j could provide more than $220,000 in profit a month, but a more conservative estimate of compromising 100 IPs would produce nearly $1,000 per month, researchers estimate.<\/p>\n<p>Some of the proxyware services restrict the types of IPs they purchase, while others do not, thereby leaving the door open to running on a server or data center IP.<\/p>\n<p>Proxyjacking is similar in concept to cryptojacking. Where cryptomining software is installed on a victim\u2019s device, so is proxyjacking malware. But unlike cryptomining, which can be detected by monitoring a CPU&#8217;s usage proxyjacking is hardert to detect. The effects on a system is marginal, according to researchers. One gigabyte of network traffic spread out over a month is likely to go unnoticed, Sysdig researchers said.<\/p>\n<p>While proxyjacking may be viewed as nuisance malware rather than a serious threat, it could cost victims if a cloud service provider charges a customer based on metered traffic. It could also harm the victim if their internet bandwidth is used for illegal or malicious activities, such as a cyberattack.&nbsp;<\/p>\n<p>The Log4j vulnerability continues to be an abused attack vector, according to security professionals.<\/p>\n<p>Timothy Morris, chief security advisor at Tanium, said users and organizations can protect themselves by only allowing authorized software to be installed, as well as having inventory software and processes to detect unauthorized applications, in addition to monitoring network traffic.<\/p>\n<p>READ MORE <a href=\"https:\/\/packetstormsecurity.com\/news\/view\/34499\/Log4j-Bug-Abused-In-New-Proxyjacking-Attacks-To-Resell-Bandwidth-Abuse-Enterprise-Cloud.html\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":51339,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[277],"tags":[10458],"class_list":["post-51338","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity-blogs","tag-headlinehackerfraudflaw"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.7 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Log4j Bug Abused In New Proxyjacking Attacks To Resell Bandwidth , Abuse Enterprise Cloud 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Log4j Bug Abused In New Proxyjacking Attacks To Resell Bandwidth , Abuse Enterprise Cloud 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2023-04-05T15:36:01+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/files.scmagazine.com\/wp-content\/uploads\/2023\/04\/bandwidth-bandit.jpg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Log4j Bug Abused In New Proxyjacking Attacks To Resell Bandwidth , Abuse Enterprise Cloud\",\"datePublished\":\"2023-04-05T15:36:01+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\\\/\"},\"wordCount\":650,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/04\\\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud.jpg\",\"keywords\":[\"headline,hacker,fraud,flaw\"],\"articleSection\":[\"CyberSecurity Blogs\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\\\/\",\"name\":\"Log4j Bug Abused In New Proxyjacking Attacks To Resell Bandwidth , Abuse Enterprise Cloud 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/04\\\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud.jpg\",\"datePublished\":\"2023-04-05T15:36:01+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/04\\\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/04\\\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud.jpg\",\"width\":1080,\"height\":720},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"headline,hacker,fraud,flaw\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/tag\\\/headlinehackerfraudflaw\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Log4j Bug Abused In New Proxyjacking Attacks To Resell Bandwidth , Abuse Enterprise Cloud\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Log4j Bug Abused In New Proxyjacking Attacks To Resell Bandwidth , Abuse Enterprise Cloud 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\/","og_locale":"en_US","og_type":"article","og_title":"Log4j Bug Abused In New Proxyjacking Attacks To Resell Bandwidth , Abuse Enterprise Cloud 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2023-04-05T15:36:01+00:00","og_image":[{"url":"https:\/\/files.scmagazine.com\/wp-content\/uploads\/2023\/04\/bandwidth-bandit.jpg","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Log4j Bug Abused In New Proxyjacking Attacks To Resell Bandwidth , Abuse Enterprise Cloud","datePublished":"2023-04-05T15:36:01+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\/"},"wordCount":650,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/04\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud.jpg","keywords":["headline,hacker,fraud,flaw"],"articleSection":["CyberSecurity Blogs"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\/","url":"https:\/\/www.threatshub.org\/blog\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\/","name":"Log4j Bug Abused In New Proxyjacking Attacks To Resell Bandwidth , Abuse Enterprise Cloud 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/04\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud.jpg","datePublished":"2023-04-05T15:36:01+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/04\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/04\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud.jpg","width":1080,"height":720},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/log4j-bug-abused-in-new-proxyjacking-attacks-to-resell-bandwidth-abuse-enterprise-cloud\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"headline,hacker,fraud,flaw","item":"https:\/\/www.threatshub.org\/blog\/tag\/headlinehackerfraudflaw\/"},{"@type":"ListItem","position":3,"name":"Log4j Bug Abused In New Proxyjacking Attacks To Resell Bandwidth , Abuse Enterprise Cloud"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/51338","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=51338"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/51338\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/51339"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=51338"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=51338"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=51338"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}