|
|
On Friday, December 10, 2021, a critical vulnerability in the popular Apache logging library, log4j, was announced.
This library is used by thousands of services around the world to facilitate logging from applications into log files. The vulnerability could allow unauthenticated remote code execution and access to servers. Due to the potential impact of this vulnerability, it set the Internet on fire. It wasn't long before hackers were in attacking the vulnerability in full force.
We have evaluated our services to ensure that none of the services provided by Security First IT are impacted by this vulnerability. I'm happy to report that we do not use this library and therefore are not directly impacted.
We are following up with our critical vendors to ensure they are applying the appropriate patches to their systems if they are impacted by the vulnerability. I highly recommend that you ask any of your cloud or technology vendors about their response to this vulnerability and how it may impact your business.
We are constantly evaluating and responding to cyber threats on behalf of our clients. If you have any questions or concerns, please let me know.
Thanks for your continued support of Security First IT.
All the best,
J. David Sims
CEO
|
|
|
