Log4j Security Team Response: 4-day Assessment

Catapult Systems, LLC

Catapult has prepared a series of trustworthy Log4J scripts and utilities we can use within your Azure environment to rapidly detect your vulnerabilities and help you prioritize remediation efforts.

Immediate assistance to discover if and where you may be vulnerable

On December 10th, 2021, a serious flaw was disclosed involving the widely used Java logging library Apache Log4j. This vulnerability has the potential to allow unauthenticated remote code execution (RCE) on nearly any machine using Log4j.

Catapult and other industry security leaders prepared a series of trustworthy scripts and utilities we can use within your Azure environment to rapidly detect your vulnerabilities and help you prioritize remediation efforts. Our utilities quickly identify where you may be exposed and how extensive the remediation will be.

Catapult will demonstrate the security-value for hosting servers within the Azure Cloud (IaaS and PaaS) compared with on-premises servers. By showcasing Azure Security Center, Defender for Servers, Defender for IoT, and other Azure Advanced Security Solutions, Catapult will demonstrate a superior security posture by virtue of automated patching, advanced vulnerability detection, and automated remediation of vulnerabilities as found within the Azure Cloud.

This offer does not cover the recovery of compromised systems.

HOW IT WORKS: Once we have access to the client’s tenant, Catapult’s Security Response Team will:

  • Run our scripts and tools to identify vulnerable, compromised, unpatched log4j devices
  • Scan client’s Azure Cloud infrastructure including web-services and IaaS (virtual servers)
  • Generate an inventory list of affected systems and prioritize areas to remediate
  • Produce a basic report outlining extent of damage
  • Utilize Azure Advance Security (Security Center and Defender for Server) to highlight recommended steps and solutions to mitigate Log4J vulnerabilities
  • Deliver a high-level remediation plan to address patching, cleanup of remediation items, and recommendations going forward
  • WHY IT MATTERS: It’s not just your internal applications... another 2,000+ third-party applications have known vulnerability to this. It is proven that servers hosted within Azure Cloud are more secure, more resilient, and more efficient as compared to managing servers in an on-premises data center. Let us show you how, with real-world analysis of your Log4J-vulnerable servers.

    Experts say the flaw leaves hundreds of millions of systems vulnerable to attack. The head of the U.S. government’s cybersecurity agency called this among the biggest threats she has seen in her career.