ZDNet

CISA orders federal civilian agencies to patch Log4j vulnerability and 12 others by December 24

CISA created a landing page for all Log4j vulnerability content and is providing insight alongside the Joint Cyber Defense Collaborative that includes multiple cybersecurity companies. CISA added the ...
ZDNet

CISA director: 'We have not seen significant intrusions' from Log4j -- yet

Officials with the US Cybersecurity and Infrastructure Security Agency (CISA) said on Monday that they have not seen the exploitation of Log4Shell result in significant intrusions since the ...
Bleeping Computer

CISA: Federal agencies required to patch Log4j by December 24th

The Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to patch systems against the critical Log4Shell vulnerability and released mitigation guidance in response to ...
Homeland Security Today

CISA Holds Call with Critical Infrastructure Partners on Log4j Vulnerabilities and the Need for Increased Vigilance This Holiday Season

The Cybersecurity and Infrastructure Security Agency (CISA) held a call Monday with critical infrastructure entities from the public and private sectors to emphasize the importance of remaining ...
CSOonline

CISA sees no significant harm from Log4j flaws but worries about future attacks

The U.S. cybersecurity agency can't rule out that adversaries are using Log4j to gain persistent access to launch attacks later. Officials at the U.S. Cybersecurity and Infrastructure Security Agency ...