{"id":55761,"date":"2022-08-29T09:25:59","date_gmt":"2022-08-29T01:25:59","guid":{"rendered":"https:\/\/version-2.com\/?p=55761"},"modified":"2023-10-16T17:35:15","modified_gmt":"2023-10-16T09:35:15","slug":"log4shell-how-to-mitigate-log4j-vulnerability-cve-2021-44228","status":"publish","type":"post","link":"https:\/\/version-2.com\/en\/2022\/08\/log4shell-how-to-mitigate-log4j-vulnerability-cve-2021-44228\/","title":{"rendered":"Log4Shell: How to Mitigate Log4j Vulnerability (CVE-2021-44228)"},"content":{"rendered":"
\n\t\t\t\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

In the end of 2021, the whole digital world has suffered the new cybersecurity flaw named Log4Shell. A new vulnerability is considered to be one of the worst that have been discovered during the last years. It scored 10 out of 10 points on the CVSS vulnerability rating scale, and it puts countless servers at risk.<\/p>\n

What is Log4Shell?<\/h2>\n

On December 9th, a critical vulnerability that allows arbitrary code to be executed was discovered. The exposure got the code CVE-2021-44228. <\/p>\n

The Log4Shell is a vulnerability in the open-source logging library, Log4j version 2, which is used by millions of Java-based applications\/servers to log error messages. Such digital giants as Tesla, Twitter, Apple iCloud, Amazon, and millions of other companies use the Log4j library. <\/p>\n

There is a lookup substitution function in the Log4j library. Log4Shell vulnerability exists because lookup substitutions are not protected enough when dealing with user-controlled input. Unauthenticated users can exploit this vulnerability via a web request to execute arbitrary code with the permission level of the running Java process.<\/p>\n

The first worldwide famous target was Minecraft. On December 10th, people started sharing videos showing that, while playing online, they could just insert code to chat on the server and seize power over the server. But most likely, everything started earlier. Cloudflare -Content Delivery Network and DDoS mitigation services provider \u2013 checked their systems and noticed that the first attack on their clients with Log4Shell vulnerability had been tried to conduct on December 1st.<\/p>\n

What makes Log4j uniquely dangerous even though you seem protected<\/h2>\n

Exploiting Log4Shell vulnerability allows hackers to launch Remote Code Execution (RCE) and remotely take full control of the victims\u2019 systems. Hackers are already actively exploiting this vulnerability. For the last week, Ransomware groups weaponized their toolset with this exploit and are using it to disrupt normal businesses operations, exfiltrating data & making affected servers unavailable for customers.<\/p>\n

One more point which makes Log4Shell as dangerous as it is the simplicity of exploitation. Even \u201cjunior\u201d hackers can use this exploit. To gain control over the victim\u2019s system, a hacker inserts the code anywhere this library handles \u2013 fill the form the website, modify website URI or Browser user-agent, or text in the support chat \u2013 and it will lead to code execution.<\/p>\n

The whole java-world is trying to deal with Log4Shell and emphasize that it is the highest possible priority for all-sized businesses. Cisco, Apple iCloud, Microsoft, and so many other huge technology companies have already stated that some of their systems were vulnerable, but they are fixing it. But for small-sized companies without a cybersecurity department, it might be quite hard to mitigate the attack independently.<\/p>\n

\"\"<\/p>\n

Which Version is not affected?<\/h2>\n

Almost all versions of log4j version 2 are affected. On December 14th, version 2.15 was found to still have a possible vulnerability. And a few days later, a Denial of Service (DoS) vulnerability was found in 2.16 too. The developers have already prepared version 2.17 and, as of December 20th, recommend updating the library again.\n<\/p>\n

How to Mitigate the Log4Shell Vulnerability? First aid actions<\/h2>\n

Put a high priority on your IT\/DevOps on patching\/mitigating this vulnerability. This is worth immediate effort.<\/p>\n

Update<\/h3>\n

It was previously thought that to be not vulnerable to Log4Shell, it is enough to turn off the lookup substitution function. But after a few days, it came across that it doesn\u2019t work like that. Generally, the main action now (on December 20th) is to update the Log4J library to 2.17, which is supposed to be safe and has lookups turned off.<\/p>\n

\u201cTo my satisfaction, our programs are not written in Java,\u201d \u2013 you might think. But the point is that you may have hundreds of different systems, and they most likely are not developed by the inside team but developed by third parties \u2013 as it usually occurs. Therefore, you might not even know what is inside these systems. In this case, you should look at the product\u2019s website or contact support for instructions on what to do to be safe.<\/p>\n

Constant Security Monitoring<\/h3>\n

Log4Shell vulnerability is one of many, critical vulnerabilities that were found during the past ten years. And the situation is constantly evolving. The only way to see what is happening inside your system is to have 24\u00d77 security monitoring and threat remediation and response. It will help you identify your vulnerable internal and external assets, patch production, review your log files for any Remote Command Execution attempts. Security analytics can see attempts to exploit Log4Shell vulnerability in the logs and block them*.<\/p>\n

*Only in one client, the UnderDefense Managed Detection and Response team blocked six attempts to exploit this vulnerability only a week after the vulnerability was discovered.<\/p>\n

A firewall is not a panacea<\/h3>\n

A firewall can block the attempts to exploit Log4Shell vulnerability, but this is not a panacea because the firewall main task is \u201cnot to pass such text.\u201d But the exploitation of this vulnerability can vary. Hackers can easily make it so that the text does not match 100%, writing the same code using different methods, but still works WAF bypass. Accordingly, WAF is not enough but still shouldn\u2019t be neglected.<\/p>\n

Enable blocking on Web Application Firewall through AWS WAF, Cloudflare, or any other WAF you have, or directly on your web-server, reverse-proxy, load balancer.<\/p>\n

Penetration Testing<\/h3>\n

After remediating this vulnerability with your DevOps team, it is worth running a penetration test to ensure external and internal systems are patched correctly, and other old vulnerabilities are not exploitable. Generally, pentesters will do the same as hackers do \u2013 try to conduct an attack on the vulnerable system. But don\u2019t forget about other vulnerabilities that existed before Log4Shell and didn\u2019t disappear. It is the same as having 12 bad teeth, but to treat only 1 of them. So, conducting a pentest, it is better not to choose only one vulnerability test.<\/p>\n

Conclusion<\/h2>\n

Since December 9th, developers have thought that user can just turn off lookups in the Log4J library to fix the vulnerability. But a few days ago came across that this method doesn\u2019t work, and millions of systems still stay vulnerable. Developers told to update the Log4J v2 library to 2.16. And people did it. But recently, the vulnerability was also found in 2.16, and now there is a 2.17 version, which is supposed to be safe. <\/p>\n

The situation is evolving. Log4Shell is something new, something dangerous, and something that is not studied enough. We recommend you to have your finger on the pulse and take care of your cybersecurity. <\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t
\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t

About Version 2 Digital<\/h3>

Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.\n

\nThrough an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.<\/p><\/div><\/div>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t\n\t\t

\n\t\t\t\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

About UnderDefense<\/strong>
\nUnderDefense, a globally top-ranked firm by Gartner and Clutch, provides cyber resiliency consulting and technology-enabled services to anticipate, manage and defend against cyber threats. We empower clients to predict, prevent, detect, and respond to threats.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>","protected":false},"excerpt":{"rendered":"

In the end of 2021, the whole digital world has suffere […]<\/p>","protected":false},"author":143524195,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[488,938,61],"tags":[489,937],"class_list":["post-55761","post","type-post","status-publish","format-standard","hentry","category-488","category-underdefense","category-press-release","tag-489","tag-underdefense"],"acf":[],"yoast_head":"\nLog4Shell: How to Mitigate Log4j Vulnerability (CVE-2021-44228) - Version 2<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/underdefense.com\/blog\/log4shell-how-to-mitigate-log4j-vulnerability\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Log4Shell: How to Mitigate Log4j Vulnerability (CVE-2021-44228) - Version 2\" \/>\n<meta property=\"og:description\" content=\"In the end of 2021, the whole digital world has suffere […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/underdefense.com\/blog\/log4shell-how-to-mitigate-log4j-vulnerability\/\" \/>\n<meta property=\"og:site_name\" content=\"Version 2\" \/>\n<meta property=\"article:published_time\" content=\"2022-08-29T01:25:59+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-10-16T09:35:15+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/underdefense.com\/wp-content\/uploads\/2021\/12\/How-to-Mitigate-Log4j.jpg\" \/>\n<meta name=\"author\" content=\"version2hk\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"version2hk\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/underdefense.com\\\/blog\\\/log4shell-how-to-mitigate-log4j-vulnerability\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/version-2.com\\\/2022\\\/08\\\/log4shell-how-to-mitigate-log4j-vulnerability-cve-2021-44228\\\/\"},\"author\":{\"name\":\"version2hk\",\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#\\\/schema\\\/person\\\/d14d2d3cd77ffdb618b9f1330fe084db\"},\"headline\":\"Log4Shell: How to Mitigate Log4j Vulnerability (CVE-2021-44228)\",\"datePublished\":\"2022-08-29T01:25:59+00:00\",\"dateModified\":\"2023-10-16T09:35:15+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/version-2.com\\\/2022\\\/08\\\/log4shell-how-to-mitigate-log4j-vulnerability-cve-2021-44228\\\/\"},\"wordCount\":1110,\"publisher\":{\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/underdefense.com\\\/blog\\\/log4shell-how-to-mitigate-log4j-vulnerability\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/underdefense.com\\\/wp-content\\\/uploads\\\/2021\\\/12\\\/How-to-Mitigate-Log4j.jpg\",\"keywords\":[\"2022\",\"UnderDefense\"],\"articleSection\":[\"2022\",\"UnderDefense\",\"Press Release\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/version-2.com\\\/2022\\\/08\\\/log4shell-how-to-mitigate-log4j-vulnerability-cve-2021-44228\\\/\",\"url\":\"https:\\\/\\\/underdefense.com\\\/blog\\\/log4shell-how-to-mitigate-log4j-vulnerability\\\/\",\"name\":\"Log4Shell: How to Mitigate Log4j Vulnerability (CVE-2021-44228) - Version 2\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/underdefense.com\\\/blog\\\/log4shell-how-to-mitigate-log4j-vulnerability\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/underdefense.com\\\/blog\\\/log4shell-how-to-mitigate-log4j-vulnerability\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/underdefense.com\\\/wp-content\\\/uploads\\\/2021\\\/12\\\/How-to-Mitigate-Log4j.jpg\",\"datePublished\":\"2022-08-29T01:25:59+00:00\",\"dateModified\":\"2023-10-16T09:35:15+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/underdefense.com\\\/blog\\\/log4shell-how-to-mitigate-log4j-vulnerability\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/underdefense.com\\\/blog\\\/log4shell-how-to-mitigate-log4j-vulnerability\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/underdefense.com\\\/blog\\\/log4shell-how-to-mitigate-log4j-vulnerability\\\/#primaryimage\",\"url\":\"https:\\\/\\\/underdefense.com\\\/wp-content\\\/uploads\\\/2021\\\/12\\\/How-to-Mitigate-Log4j.jpg\",\"contentUrl\":\"https:\\\/\\\/underdefense.com\\\/wp-content\\\/uploads\\\/2021\\\/12\\\/How-to-Mitigate-Log4j.jpg\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/underdefense.com\\\/blog\\\/log4shell-how-to-mitigate-log4j-vulnerability\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"\u9996\u9801\",\"item\":\"https:\\\/\\\/version-2.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Log4Shell: How to Mitigate Log4j Vulnerability (CVE-2021-44228)\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#website\",\"url\":\"https:\\\/\\\/version-2.com\\\/zh\\\/\",\"name\":\"Version 2\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/version-2.com\\\/zh\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#organization\",\"name\":\"Version 2\",\"url\":\"https:\\\/\\\/version-2.com\\\/zh\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/i0.wp.com\\\/version-2.com\\\/wp-content\\\/uploads\\\/2020\\\/08\\\/v2-hk-hor-4.png?fit=1795%2C335&ssl=1\",\"contentUrl\":\"https:\\\/\\\/i0.wp.com\\\/version-2.com\\\/wp-content\\\/uploads\\\/2020\\\/08\\\/v2-hk-hor-4.png?fit=1795%2C335&ssl=1\",\"width\":1795,\"height\":335,\"caption\":\"Version 2\"},\"image\":{\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#\\\/schema\\\/person\\\/d14d2d3cd77ffdb618b9f1330fe084db\",\"name\":\"version2hk\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/d280627252b42d7489de74dd88aa04043a495f25e258575000dc767e287bf94c?s=96&d=identicon&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/d280627252b42d7489de74dd88aa04043a495f25e258575000dc767e287bf94c?s=96&d=identicon&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/d280627252b42d7489de74dd88aa04043a495f25e258575000dc767e287bf94c?s=96&d=identicon&r=g\",\"caption\":\"version2hk\"},\"sameAs\":[\"http:\\\/\\\/version2xfortcom.wordpress.com\"],\"url\":\"https:\\\/\\\/version-2.com\\\/en\\\/author\\\/version2hk\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Log4Shell: How to Mitigate Log4j Vulnerability (CVE-2021-44228) - Version 2","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/underdefense.com\/blog\/log4shell-how-to-mitigate-log4j-vulnerability\/","og_locale":"en_US","og_type":"article","og_title":"Log4Shell: How to Mitigate Log4j Vulnerability (CVE-2021-44228) - Version 2","og_description":"In the end of 2021, the whole digital world has suffere […]","og_url":"https:\/\/underdefense.com\/blog\/log4shell-how-to-mitigate-log4j-vulnerability\/","og_site_name":"Version 2","article_published_time":"2022-08-29T01:25:59+00:00","article_modified_time":"2023-10-16T09:35:15+00:00","og_image":[{"url":"https:\/\/underdefense.com\/wp-content\/uploads\/2021\/12\/How-to-Mitigate-Log4j.jpg","type":"","width":"","height":""}],"author":"version2hk","twitter_card":"summary_large_image","twitter_misc":{"Written by":"version2hk","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/underdefense.com\/blog\/log4shell-how-to-mitigate-log4j-vulnerability\/#article","isPartOf":{"@id":"https:\/\/version-2.com\/2022\/08\/log4shell-how-to-mitigate-log4j-vulnerability-cve-2021-44228\/"},"author":{"name":"version2hk","@id":"https:\/\/version-2.com\/zh\/#\/schema\/person\/d14d2d3cd77ffdb618b9f1330fe084db"},"headline":"Log4Shell: How to Mitigate Log4j Vulnerability (CVE-2021-44228)","datePublished":"2022-08-29T01:25:59+00:00","dateModified":"2023-10-16T09:35:15+00:00","mainEntityOfPage":{"@id":"https:\/\/version-2.com\/2022\/08\/log4shell-how-to-mitigate-log4j-vulnerability-cve-2021-44228\/"},"wordCount":1110,"publisher":{"@id":"https:\/\/version-2.com\/zh\/#organization"},"image":{"@id":"https:\/\/underdefense.com\/blog\/log4shell-how-to-mitigate-log4j-vulnerability\/#primaryimage"},"thumbnailUrl":"https:\/\/underdefense.com\/wp-content\/uploads\/2021\/12\/How-to-Mitigate-Log4j.jpg","keywords":["2022","UnderDefense"],"articleSection":["2022","UnderDefense","Press Release"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/version-2.com\/2022\/08\/log4shell-how-to-mitigate-log4j-vulnerability-cve-2021-44228\/","url":"https:\/\/underdefense.com\/blog\/log4shell-how-to-mitigate-log4j-vulnerability\/","name":"Log4Shell: How to Mitigate Log4j Vulnerability (CVE-2021-44228) - Version 2","isPartOf":{"@id":"https:\/\/version-2.com\/zh\/#website"},"primaryImageOfPage":{"@id":"https:\/\/underdefense.com\/blog\/log4shell-how-to-mitigate-log4j-vulnerability\/#primaryimage"},"image":{"@id":"https:\/\/underdefense.com\/blog\/log4shell-how-to-mitigate-log4j-vulnerability\/#primaryimage"},"thumbnailUrl":"https:\/\/underdefense.com\/wp-content\/uploads\/2021\/12\/How-to-Mitigate-Log4j.jpg","datePublished":"2022-08-29T01:25:59+00:00","dateModified":"2023-10-16T09:35:15+00:00","breadcrumb":{"@id":"https:\/\/underdefense.com\/blog\/log4shell-how-to-mitigate-log4j-vulnerability\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/underdefense.com\/blog\/log4shell-how-to-mitigate-log4j-vulnerability\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/underdefense.com\/blog\/log4shell-how-to-mitigate-log4j-vulnerability\/#primaryimage","url":"https:\/\/underdefense.com\/wp-content\/uploads\/2021\/12\/How-to-Mitigate-Log4j.jpg","contentUrl":"https:\/\/underdefense.com\/wp-content\/uploads\/2021\/12\/How-to-Mitigate-Log4j.jpg"},{"@type":"BreadcrumbList","@id":"https:\/\/underdefense.com\/blog\/log4shell-how-to-mitigate-log4j-vulnerability\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"\u9996\u9801","item":"https:\/\/version-2.com\/"},{"@type":"ListItem","position":2,"name":"Log4Shell: How to Mitigate Log4j Vulnerability (CVE-2021-44228)"}]},{"@type":"WebSite","@id":"https:\/\/version-2.com\/zh\/#website","url":"https:\/\/version-2.com\/zh\/","name":"Version 2","description":"","publisher":{"@id":"https:\/\/version-2.com\/zh\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/version-2.com\/zh\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/version-2.com\/zh\/#organization","name":"Version 2","url":"https:\/\/version-2.com\/zh\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/version-2.com\/zh\/#\/schema\/logo\/image\/","url":"https:\/\/i0.wp.com\/version-2.com\/wp-content\/uploads\/2020\/08\/v2-hk-hor-4.png?fit=1795%2C335&ssl=1","contentUrl":"https:\/\/i0.wp.com\/version-2.com\/wp-content\/uploads\/2020\/08\/v2-hk-hor-4.png?fit=1795%2C335&ssl=1","width":1795,"height":335,"caption":"Version 2"},"image":{"@id":"https:\/\/version-2.com\/zh\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/version-2.com\/zh\/#\/schema\/person\/d14d2d3cd77ffdb618b9f1330fe084db","name":"version2hk","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/d280627252b42d7489de74dd88aa04043a495f25e258575000dc767e287bf94c?s=96&d=identicon&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/d280627252b42d7489de74dd88aa04043a495f25e258575000dc767e287bf94c?s=96&d=identicon&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d280627252b42d7489de74dd88aa04043a495f25e258575000dc767e287bf94c?s=96&d=identicon&r=g","caption":"version2hk"},"sameAs":["http:\/\/version2xfortcom.wordpress.com"],"url":"https:\/\/version-2.com\/en\/author\/version2hk\/"}]}},"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/pbQRKm-evn","post_mailing_queue_ids":[],"_links":{"self":[{"href":"https:\/\/version-2.com\/en\/wp-json\/wp\/v2\/posts\/55761","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/version-2.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/version-2.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/version-2.com\/en\/wp-json\/wp\/v2\/users\/143524195"}],"replies":[{"embeddable":true,"href":"https:\/\/version-2.com\/en\/wp-json\/wp\/v2\/comments?post=55761"}],"version-history":[{"count":9,"href":"https:\/\/version-2.com\/en\/wp-json\/wp\/v2\/posts\/55761\/revisions"}],"predecessor-version":[{"id":73034,"href":"https:\/\/version-2.com\/en\/wp-json\/wp\/v2\/posts\/55761\/revisions\/73034"}],"wp:attachment":[{"href":"https:\/\/version-2.com\/en\/wp-json\/wp\/v2\/media?parent=55761"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/version-2.com\/en\/wp-json\/wp\/v2\/categories?post=55761"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/version-2.com\/en\/wp-json\/wp\/v2\/tags?post=55761"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}