15 jul 2022 om 12:40
At the end of 2020, a vulnerability in Log4j was discovered. Log4j is a piece of software that organizations and companies use a lot so that they can see what goes wrong when a computer gives an error message. By exploiting the vulnerability, hackers can take over computer servers. That’s why experts have taken great pains to update computer systems and programs.
The damage as a result of the vulnerability is not so bad so far. The CSRB says it is not aware of any significant attacks as a result of the Log4j vulnerability. That surprises the board, given the serious nature of the leak.
Still, a lot of work is being done to close all vulnerabilities in companies and organizations. A government agency has already completed more than 33,000 hours of work to fix the vulnerability, according to the study.
Because the problem is so widespread, the CRSB concludes that the vulnerability can be termed an “endemic vulnerability”. It could be years before the problems are solved. The report therefore warns that “a significant risk” remains.