Last week, a vulnerability was discovered in Apache Log4j, a software widely used in web applications and many other systems. The vulnerability allows attackers to remotely exploit the rights of web servers. According to the CCB, cyber criminals are actively looking for vulnerable systems to exploit the situation.
–
Companies and organizations that use Log4j should therefore install the available updates as soon as possible. If you don’t, you can expect major problems in the coming days and weeks, according to the CCB.
Because the software is so widely distributed, it is difficult to estimate how the discovered vulnerability will be exploited and on what scale, the CCB says. Several large organizations, such as Apple, Amazon and Twitter, have already indicated that their systems are at risk due to the Log4j vulnerability.
–
The CCB says it is closely monitoring the situation and will publish new information about updates as soon as it is available. Companies and organizations that are victims of a cyber attack can report this to [email protected].
–
