CM – German cybersecurity guard issues red warning message for software

0

shop

shop

FILE PHOTO: A man is holding a laptop while cyber code is projected onto him in this illustration image dated 13 May 2017. REUTERS / Kacper Pempel / File Photo

FRANKFURT: Germany’s federal supervisory authority for cybersecurity, the BSI, issued the highest red alert on Saturday (December 11th) for faulty, widespread software that states that it is « extremely critical Threat « for web servers.

A vulnerability in a Java-based library called Log4j could be exploited to enable a complete takeover of the affected system, the BSI announced in a statement on its website.

 » The reason for this assessment is the very widespread use of the affected product and the associated impact on countless other products. The vulnerability is also easy to exploit and a proof-of-concept is publicly available, « says the BSI.

 » The BSI is aware of global and Germany-wide mass scans and compromise attempts. The first successful compromises are also reported publicly ”, it continues.

Although there is a security update for Log4j, all products that use it must also be adapted, announced the BSI and recommended companies and organizations that work in implement the measures described in the cyber security warning.

This service is not intended for people residing in the EU. By clicking « Subscribe » I consent to receive news and promotional materials from Mediacorp and Mediacorp’s partners.

We know switching browsers can be a chore, but we want your experience with CNA to be fast, safe, and as good as possible.

To continue, upgrade to a supported one Browser or download the mobile app for the best experience.

Similar title :
German cybersecurity watchdog issues warning warning for software
BSI: First application for IT security labels possible
Federal Office warns of major threat from software security vulnerabilities

Keywords:

Computer security,Germany,Federal Office for Information Security,Vulnerability,Log4j,Computer security, Germany, Federal Office for Information Security, Vulnerability, Log4j,,

Donnez votre avis et abonnez-vous pour plus d’infos

[gs-fb-comments]

[comment]

[supsystic-newsletter-form id=4]

Vidéo du jour: