Advisory: Stations Should Check With Web/IT Providers on New Apache Vulnerability
Member stations are advised to check with their IT, web and cloud services providers to be certain they are patched for a new Apache vulnerability. The vulnerability, first discovered late last week, is severe because it is in a system that underlies most company systems around the world, and has been in use for decades. The vulnerability in Apache logging package log4j has affected potentially thousands of companies worldwide, and is a particularly serious problem.
“This is one of the worst vulnerabilities in the history of vulnerabilities,” Tom Kellermann, a former member of an Obama administration cybersecurity commission and the head of Cybersecurity Strategy at technology company VMware, told The Hill on Monday.
After hearing about the potential issue, the MAB contacted its web provider, who installed the necessary patch to its web server.
Read more from The Hill here.