TRAININGSERVICESEXPERTS BLOGLET'S TALK

Experts Blog

Log4j Explainer: Protect Your Systems From Log4j 2 Vulnerability
December 14, 2021
TrackerPayton

A zero-day vulnerability in Apache logging library Log4j found the CISOs leading the charge to update and patch systems or put in place a manual mitigation. The exploit leaves some of the world's most popular applications and services vulnerable to attack.

An unethical hacker with knowledge and access could use this vulnerability and target servers using this logging capability with remote code execution on servers. 

Fortalice advises all clients to take the Log4J vulnerability seriously. It's the highest severity score on the charts and a CISO cannot remediate alone. This explainer covers the issue and priority steps for organizations to take.

Incident Response
Security Engineering
Related Posts
Navigating SEC Cybersecurity Disclosures and Materiality
Theresa Payton

Digital Executive Protection Programs: Why Every Board Member, Executive, and High Access Employee Should be Covered
Fortalice Solutions

During the course of our investigative work, Fortalice has observed an increasing and alarming trend: personal email compromise is leading to business email compromise. Threat actors will leverage weaknesses regarding executives’ or board members’ personal cybersecurity hygiene to gain access to their business accounts. Extortion also remains a top cybersecurity threat, with organized criminals overseas routinely targeting corporations and the people who support them.

Categories
Application Security
Press Release
Client Advisory
Defensive Perspectives
Offensive Perspectives
Executive Perspectives
Recent Posts
UnitedHealth Breach
Navigating SEC Cybersecurity Disclosures and Materiality
Web Trackers
Let's Talk
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.