Apache Log4j zero day vulnerability may be the most serious security vulnerability to have emerged in years. The vulnerability, CVE-2021-44228, is part of the open-source Log4J 2 software library. Experts are already seeing the vulnerability exploited to install and cryptocurrency mining botnets. It’s likely going to take weeks or months for organizations to really get a good handle on all the different applications and systems that use it, experts say. The long tail on this [vulnerability] is going to be quite, quite extraordinary over time,” says BugCrowd founder Casey Ellis.”]