Remain calm, no need to panic…

We can now rest easy. A recent article from SecurityWeek quoted officials from the U.S. Cybersecurity and Infrastructure Security Agency (CISA) that said, “The agency told SecurityWeek that it does “not have any confirmed compromises of federal agencies” resulting from the recently disclosed Log4j vulnerability tracked as Log4Shell and CVE-2021-44228.”

I can see how they arrived at this conclusion:

The agency head asks their secretary, “Have any of our systems been compromised by log4j?”.

Secretary, “How the hell would I know?”.

Agency’s official report – No confirmed compromises at Agency Blissful Ignorance!

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s