LIR: spamlet. So far we've only had 5 or 6 internally used products affected by log4j but I expect our risk is going to come from external providers
Posted by
oblique (aka kkuphal)
Dec 14 '21, 06:59
|
going down (like this Kronos example). I'm still searching all our computers to see if there's any oddball software out there that we missed or aren't aware of that may also be affected. We have all the right pieces in place though with an intrusion protection system that updated to block the outbound request to get owned so I'm reasonably sure that even if we have a vulnerable system it can't deliver the payload to get attacked.
|