all InfoSec news
If hackers are exploiting the Log4j flaw, CISA says we might not know yet
CyberScoop www.cyberscoop.com
Federal officials cautioned Monday that, while the widespread Log4j vulnerability hasn’t led to any major known intrusions in the U.S., there could be a “lag” between when the flaw became known, and when attackers exploit it. Cybersecurity and Infrastructure Security Agency Director Jen Easterly said that there were months between the discovery of the vulnerability that led to the 2017 Equifax breach, which exposed the personal information of nearly 150 million Americans, and word of the breach itself, invoking one …
apache apache struts belgium cisa department of homeland security (dhs) equifax eric goldstein flaw government hackers jen easterly log4j policy threats