Several months ago, cases of hacking in Apache for servers began to be reported through a vulnerability named Log4j. The case was peculiar and alarming, as it was a vulnerability "day one» almost impossible to patch, and for which there have been reports of possible cases of use by government agents, being a vulnerability relatively easy to implement and that until months after its discovery its use has not been reported.
Now, several months after a critical number of cases appeared, a balance has been taken of their impact. Security experts have warned that it will take years, even a decade, to completely eradicate the threat which supposes the Log4j vulnerability.
Log4j seems to be coming to stay for a long time
The US Government Cyber Security Review Board has analyzed what caused the Log4j bug. They have tried to provide solutions, lessons and other key points for the affected companies. This 15-member independent body was created by US President Joe Biden in 2021 to try to improve the country's cybersecurity standards, and has been investigating Log4j for the past five months.
Among the conclusions of his investigation is the warning that unpatched endpoints will persist for yearsif not a decade. And with them, the threat of exploits will continue and the risk will continue to exist. Network defenders have to remain vigilant. These warnings come from Rob Silvers, DHS deputy secretary for policy and chairman of the panel, in a statement to reporters Wednesday during a conference call.
According to Silvers, some 80 companies were interviewed, as well as industry, foreign government and security experts. The Chinese government was also involved, as Alibaba engineers were the first to discover Log4j.
The Chinese were initially immediately accused of trying to take advantage of their discoveries, but the report says that there was no evidence to support such claims, with which the Chinese are as much victims as any other affected.
In conclusion, the report offers nearly two dozen recommendations, which should help organizations stay safe from the risk posed by the Log4j vulnerability. It also argues that companies should invest more in terms of cybersecurity solutions and defenses, such as firewalls and zero trust to prevent vulnerabilities and malicious attacks.
Source: TechRadar
