Jersey’s Cyber Emergency Response Team (CERT) have issued an important security alert for those using the popular Apache software.
Matt Palmer, Director of CERT explained why this security issue needs urgent attention: “Log4j is a critical vulnerability impacting millions of systems worldwide and organisations should take immediate action to protect data and systems, and avoid network compromise”.
CERT Jersey is advising local organisations to take immediate action to protect themselves from a critical IT vulnerability.
Log4shell is a critical vulnerability in the widely-used logging tool Log4j, which is used by millions of computers worldwide running online services. If not addressed, it could allow your systems and network to be compromised.
Organisations operating Apache are advised to immediately follow the guidance issued by NCSC and the supplementary patching guidance issued by US NIST.
US cyber-security officials have ordered federal agencies to protect their systems against a major computer vulnerability by Christmas Eve.
The Cybersecurity and Infrastructure Security Agency (CISA) set a 24th December deadline for security patches.
Security experts have called Log4shell one of the most serious security flaws in the past decade.
Microsoft has warned some nation-state hacking groups are using Log4shell.
CERT recommends that organisations with high IT reliance or externally facing systems should, in addition to patching for new vulnerabilities as they arise, ensure that they operate a Web Application Firewall (WAF) with automatic rule updates. A WAF sits between your systems and the public internet, protecting applications from attack.
Operating a WAF is not an alternative to patching, but can reduce the risk of a successful exploit and provide organisations with a critical window to patch systems without being exposed to immediate risk of compromise.
Organisations that do not already operate a supplier assurance program and have external technology or data processing providers should ensure their critical suppliers implement equivalent controls.
Anyone who believes they have been compromised as a result of the vulnerability should speak to their IT support provider or contact CERT for advice at hello@cert.je.
Jersey’s Cyber Emergency Response Team (CERT.JE / CERT Jersey) is responsible for promoting and improving the cyber resilience across the Island’s critical national infrastructure, business communities and citizens to reduce the risk and impact of major cyber incidents in Jersey.
Jersey’s CERT forms part of an international cyber emergency response network and represents the interests of Jersey internationally, helping to maintain and strengthen the Island’s international reputation as a safe place to live and to do business online.
CERT can also provide expert assistance in the case of a cyber security incident. The CERT is an independent voice for cyber security and designed to operate at arm’s length from Government.
References
