The breach of a U.S. government agency is realistically one of the many breaches that will come to light where threat actors successfully exploit Log4Shell. In the coming days, Tenable will release an alert examining the impact of Log4Shell, in which we found that nearly 3 out of 4 organizations are still vulnerable to the flaw. The reality is that full remediation of Log4Shell is difficult to achieve given its prevalence and the fact that whenever an organisation adds new assets, it could be reintroducing the vulnerability. The best way to thwart attackers is to remain diligent and consistent in remediation efforts.
Quote by Bob Huber, Chief Security Officer, Tenable