• A Staff Canada Group Company

‘Critical’ cybersecurity flaw already exploited

‘Critical’ cybersecurity flaw already exploited

 December 14, 2021 at 12:48 am   |     Author:   |     Software  

Credit: Unsplash/CC0 Public Domain

Germany has activated its national IT crisis center in response to an “extremely critical” flaw in a widely used software tool that the government says has already been exploited internationally.

A spokesman for Germany’s Interior Ministry said the country’s federal IT safety agency is urging users to patch their systems as quickly as possible to fend off possible attacks using a bug in the Log4J tool.

“The threat situation is extremely critical,” the spokesman, Steve Alter, told reporters in Berlin. “Immediate protective measures are required.”

German authorities have recorded efforts to exploit the bug around the world, including successful attempts, he said, without elaborating. So far no successful attacks against German government entities or networks have been confirmed, though a number have been deemed vulnerable, said Alter.

Germany is in contact with “numerous national and international partners” on the matter, he said.

The flaw is considered so serious because the affected software is used in a wide range of devices that use Java software.

“A successful exploit of this weakness would mean that someone could take complete control of the affected system,” said Alter.

Global race to patch critical computer bug

© 2021 The Associated Press. All rights reserved. This material may not be published, broadcast, rewritten or redistributed without permission.

Germany: ‘Critical’ cybersecurity flaw already exploited (2021, December 13)
retrieved 14 December 2021
from https://techxplore.com/news/2021-12-germany-critical-cybersecurity-flaw-exploited.html

This document is subject to copyright. Apart from any fair dealing for the purpose of private study or research, no
part may be reproduced without the written permission. The content is provided for information purposes only.

Source link