Apache Log4J Zero Day Vulnerability

Executive Summary

A vulnerability in the Log4J logging library allows an unauthenticated attacker to perform remote code execution and gain complete access to a target system via a vulnerable version of the Log4J library. Any application that uses Log4J is potentially affected.

Six Degrees is aware of the ongoing situation. We are actively working with partners and vendors to mitigate potential exploits.

There is no known record of this being exploited yet, though knowledge is coming through that reconnaissance is starting to be detected around the UK.

An initial list of technologies which have confirmed as vulnerable and those that are still investigating can be found here.

Six Degrees Actions

Six Degrees is working to deploy emergency mitigations on all potentially vulnerable technologies in-line with security best practices and change management. We will communicate the next steps to clients before implementing the upgrades.

Subscribe to the newsletter today

Related posts

New Senior Appointments: ‘Transforming to Scale’

New Senior Appointments: ‘Transforming to Scale’

Six Degrees appoints new Chief Revenue and Chief

Aegis Cyber Security Maturity Assessment

Aegis Cyber Security Maturity Assessment

When you book an Essential Cyber Security Maturity

Want to find out how your cyber security stacks up?

Take our free Cyber Security Maturity Assessment today.