Cyber security watchdog, the BSI said that although there was a security update for Log4j all products using it also needed to be adapted, recommending that companies and organisations implemented the measures outlined in the cyber security warning
On Saturday, the BSI, federal cyber security watchdog of Germany, issued a red alert warning, its highest, on a flawed of widely-used software, saying it posted an “extremely critical threat” to web servers.
To allow a complete takeover of the affected system, vulnerability in a Java-based library known as Log4j can be exploited, cyber security watchdog, the BSI said in a statement on its website.
“The reason for this assessment is the very wide distribution of the affected product and the associated impact on countless other products. The vulnerability is also easily exploitable, and a proof-of-concept is publicly available”, the BSI said.
“The BSI is aware of world and Germany-wide mass scans as well as attempted compromises. Initial successful compromises are also being publicly reported”, it added.
Cyber security watchdog, the BSI said that although there was a security update for Log4j all products using it also needed to be adapted, recommending that companies and organisations implemented the measures outlined in the cyber security warning.
Also read: CIO News interviews Shri Wangki Lowang, Minister (IT) of Arunachal Pradesh
Do Follow: CIO News LinkedIn Account | CIO News Facebook | CIO News Youtube | CIO News Twitter
About us:
CIO News, a proprietary of Mercadeo, produces award-winning content and resources for IT leaders across any industry through print articles and recorded video interviews on topics in the technology sector such as Digital Transformation, Artificial Intelligence (AI), Machine Learning (ML), Cloud, Robotics, Cyber-security, Data, Analytics, SOC, SASE, among other technology topics.
