Detect, Mitigate, and Remediate Log4J with BigFix
Over the past week, there have been many social media posts and emails on Log4j, what it is, the software, services, infrastructure it affects, and how it is used.
Log4j is a utility that allows java programs to log what is going on in the system. With Log4J being the most popular java logging utility, It's also safe to say that the Log4j vulnerability is probably the most critical in the past decade simply because it allows bots to bypass authentication and remotely execute code in applications that use log4j. The way a Log4j attack is launched and the scale of its use, the exposure is enormous. Just because developers and vendors have focused on good authentication management will not help in this case.
What Next?
This problem will be around for some time, and it will not go away overnight. Whist vendors are scrambling to identify and provide fixes, and customers need to take a step back and start taking a more comprehensive approach. There are three critical elements to this approach:
Visibility – You see where this may be used across all operating systems, devices, and servers.
Measure – You need to quantify the impact on each device where it is included or referenced.
Control?– Once you have a validated fix, you need to remediate the issue quickly and consistently.
Vendors alone are expected to release hundreds of patches. Is it a good idea to apply these manually or use multiple tools depending on the operating system? How easy will it be to miss a system or report on where you are with patching? A consolidated, integrated approach is needed here.
?How can BigFix help?
With BigFix, you can manage every endpoint, now and in the future.
BigFix automates discovery, management, and remediation of all endpoints, whether on-premises, mobile, virtual, or in the cloud, regardless of the operating system, location, or connectivity. BigFix Insights for Vulnerability Remediation integrates with leading vulnerability management solutions like Tenable to remediate vulnerabilities like Log4j faster than any other solution in the market.
If you want to discuss how Crayon can assist in more detail or would like to receive a guide on how BigFix can be used, please reach out to me at [email protected] or my colleagues at your local Crayon office.