Apache Log4J Zero Day Vulnerability
Background:
CSI is actively investigating a remote code execution vulnerability (CVE-2021-44228) – deemed “Log4Shell” that was discovered on 9th December.
Who is affected?
Systems using Apache Log4j2 version 2.14.1 and earlier are affected. Also affected are any products that bundle log4j2 by default.
What is CSI doing in response?
CSI is working with vendors to understand the scope of services and systems affected by this vulnerability and planning remediation efforts.
We are investigating and taking action for CSI services that may be potentially impacted.
We will communicate to any clients who are impacted and help customers detect, investigate and mitigate attacks.
Additional information can be found on the NCSC website below:
https://www.ncsc.gov.uk/news/apache-log4j-vulnerability
Read more like this
Storage
Everything New & Exciting with IBM FlashSystem (The 2026 Buyers Guide)
1. Detection in Under 60 Seconds: FCM5 In a cyber-attack, the “Blast Radius” is determined by how quickly you can…
IBM Power
Why 2026 is the Year of “Invisible AI” (and the Hardware Making it Happen)
THE TREND The Death of the “Science Experiment” In the early 2020s, AI was a ‘destination’—an interface you visited to…
Public Cloud
The Microsoft 365 ‘Golden Window’: A Strategic Guide to the 2026 Price Increases
Navigating the Microsoft 365 Price Increase 2026 The upcoming changes are not merely inflationary adjustments. They reflect the massive integration…
Ready to talk?
Get in touch today to discuss your IT challenges and goals. No matter what’s happening in your IT environment right now, discover how our experts can help your business discover its competitive edge.