Microsoft has observed a large amount of scanning activity and exploitation attempts targeting the Log4j flaws in the last weeks of December. Attack groups are using the flaws to establish reverse shells, drop remote access toolkits, and carry out hands-on-keyboard attacks on vulnerable systems. Microsoft: Customers should assume broad availability of exploit code and scanning capabilities to be a real and present danger to their environments. The vulnerability can be buried several layers and not easily visible to security scanners, experts say.”]