"Log4J Exploits May Rise Further as Microsoft Continues War on Phishing"

Researchers expect a rise in Log4J exploits as cybercriminals continue to find new methods to circumvent the ongoing implementation of Microsoft's anti-phishing measures. Microsoft blocked the enablement of VBA macros in Office documents by default in 2022, after the Information Technology (IT) community had demanded it for years. Therefore, one of the leading methods for delivering malware via Office documents and phishing emails was nullified. Since then, ESET researchers have observed a global increase in exploits targeting the Log4J vulnerability. Researchers are uncertain as to the cause of the increase in attempts, but cybercriminals may be seeking new attack methods now that phishing with malicious documents has become more difficult. This article continues to discuss the expected rise in Log4J exploits, the latest Log4J numbers, and the effectiveness of blocking VBA macros. 

ITPro reports "Log4J Exploits May Rise Further as Microsoft Continues War on Phishing"