William Molinié 7:12 am, December 21, 2021
Reported on November 24 by an expert from the Chinese giant Alibaba, the "Log4Shell" flaw threatens the computer security of French companies.
The French gendarme recommends taking an inventory of its computer systems, because groups of hackers seek to exploit this flaw.
It is a fault described as ten-year.
Detected on November 24 by an expert from the Chinese e-commerce giant Alibaba, the flaw called "Log4Shell" was assessed 10 out of 10 in terms of dangerousness by a reference organization that lists computer vulnerabilities.
The French digital security gendarme, ANSSI, recommends that all companies quickly take stock of their systems.
>> READ ALSO -
Investing in the metaverse universe, the new real estate trend?
A flaw that can be exploited by hackers
Concretely, with this flaw, it is as if in an apartment building, a single bulb made the whole electrical circuit break and that it was therefore necessary to look everywhere and replace it.
However, for a few days now, groups of Chinese and Iranian hackers have also been trying to exploit this flaw.
This is what cybersecurity specialist David Grout, at the head of the Mandiant company, explains: "Chinese operators most of the time have attempts to steal information, to use cyber-espionage to gain an economic advantage. , tactical or geopolitical. Where the Iranians have more of a pedigree and DNA of much more destructive operations. "
>> Find the morning show of the day in replay and podcast here
The risk is particularly important for SMEs and small administrations such as hospitals or town halls, which do not necessarily have the capacity to identify and repair this flaw.
They could therefore remain vulnerable for years and constitute a colossal impact surface for cybercriminals.