11 Jul, 2022
Review of the December 2021 Log4j Event
United States. Cybersecurity & Infrastructure Security Agency. Cyber Safety Review Board
From the document: "President Biden directed the establishment of the Cyber Safety Review Board (CSRB, or the Board) to review significant cyber incidents and provide 'advice, information, or recommendations for improving cybersecurity and incident response practices and policy.' [...] The Board's first charge was to review the events surrounding the December 2021 disclosure of the Log4j vulnerability. Log4j is a piece of open source software that developers have integrated into millions of systems. A vulnerability in such a pervasive and ubiquitous piece of software has the ability to impact companies and organizations (including governments) all over the world. As such, the Log4j event drives home the urgency with which we must move to a culture of shared responsibility around managing cyber threats. The scope of this report, and to whom we are directing the recommendations, reflect this observation."
-
URL
-
Publisher
-
Date11 Jul, 2022
-
CopyrightPublic Domain
-
Retrieved FromCybersecurity and Infrastructure Security Agency: www.cisa.gov/
-
Formatpdf
-
Media Typeapplication/pdf
-
Subjects
-
List
Details