Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
×
Security Java

Belgian Defense Ministry Confirms Cyberattack Through Log4j Exploitation (zdnet.com) 10

An anonymous reader quotes a report from ZDNet: The Belgian Ministry of Defense has confirmed a cyberattack on its networks that involved the Log4j vulnerability. In a statement, the Defense Ministry said it discovered an attack on its computer network with internet access on Thursday. They did not say if it was a ransomware attack but explained that "quarantine measures" were quickly put in place to "contain the infected elements." "Priority was given to the operability of the network. Monitoring will continue. Throughout the weekend, our teams were mobilized to contain the problem, continue our operations and alert our partners," the Defense Ministry said. "This attack follows the exploitation of the Log4j vulnerability, which was made public last week and for which IT specialists around the world are jumping into the breach. The Ministry of Defense will not provide any further information at this stage."

Multiple reports from companies like Google and Microsoft have indicated that government hacking groups around the world are leveraging the Log4j vulnerability in attacks. [...] Centre for Cybersecurity Belgium spokesperson Katrien Eggers told ZDNet that they too sent out a warning to Belgian companies about the Apache Log4j software issue, writing that any organization that had not already taken action should "expect major problems in the coming days and weeks." "Because this software is so widely distributed, it is difficult to estimate how the discovered vulnerability will be exploited and on what scale," the Centre for Cybersecurity Belgium said, adding that any affected organizations should contact them. "It goes without saying that this is a dangerous situation."

This discussion has been archived. No new comments can be posted.

Belgian Defense Ministry Confirms Cyberattack Through Log4j Exploitation

Comments Filter:
  • anything they knew related to NATO secrets. If there is such a thing.
    • Re: (Score:3, Insightful)

      by Anonymous Coward
      unlikely, just because you breach a network doesn't mean you automatically gained access to everything. Especially if quickly spotted. What is disgusting though are places that haven't yet patched this or taken mitigating actions. Anyone still wide open deserves what they get. I visited one org yesterday and talking to the technical lead for several business critical internet facing systems that are ALL affected, when I asked how quickly they got their patching and mitigations in place he looked at me puzzl
  • an attack the size of Belgium
  • This is the expected result. When will the children learn to keep data and executable code separated, and to stop deliberately executing data?

    This crap must have been the product of an expert Microsoft trained loogan.

He who has but four and spends five has no need for a wallet.

Working...