Home » Security Bloggers Network » Detecting and Blocking Log4j Attacks with Mission Secure

Detecting and Blocking Log4j Attacks with Mission Secure

by Mission Secure on December 13, 2021

Log4j is a Java-based logging framework used worldwide in applications, services, and websites. In December 2021, Log4j was revealed to have a critical vulnerability that allows remote code execution via a relatively simple exploit. This vulnerability puts hundreds of millions of devices at risk, including consumer products, enterprise IT assets, and operational technology (OT) devices.

The Cybersecurity and Infrastructure Security Agency (CISA) assigned the Log4j vulnerability a severity level of 10 out of 10 and urged vendors and users to take immediate action. The recommended mitigation is to upgrade to the latest version of Log4j (which eliminates the vulnerability) or to disable the lookup functionality that enables the exploit in older versions.

However, Log4j mitigation presents several challenges. Many organizations will struggle to identify all of the devices in their ecosystems that use Java and need to be updated. For OT users, the required software updates themselves may be impractical and represent a significant risk to critical operations.

Mission Secure Can Help

Mission Secure provides 24/7 protection against cyber threats to operational technology and industrial control systems. Mission Secure’s products are not vulnerable to Log4j attacks themselves, because they do not utilize Java or any framework components that utilize Java.

Furthermore, Mission Secure can help organizations defend their OT and ICS assets against attempts to access critical systems using Log4j or other threat vectors.

Defending Against Log4j Attacks

Mission Secure’s integrated cyber protection platform delivers visibility, segmentation, protection, and patented signal integrity monitoring for OT and ICS networks.

msi-purdue-model-infographic The Mission Secure Platform easily deploys in a wide range of operational network environments, providing reliable security at Purdue Model Levels 0, 1, 2, and 3 with a combination of Security Appliances and Signal Integrity Sensors and local management using the Security Management Console.