Skip to main content

Ruhr area: large vulnerability in software lays online

A serious vulnerability in the Java software Log4j now also has an impact on the municipalities in NRW and the Ruhr area.

Dortmund — a vulnerability in the Java library Log4j of the US manufacturer Apache is currently for massive problems worldwide. The Federal Office for Safety in Information Technology (BSI) suggested the vulnerability as an extremely critical — the highest of the four possible warning levels. Also, cities in North Rhine-Westphalia now report problems, such as the Corona Dashboards.

NRW: Vulnerability in Log4j is evaluated by the BSI as extremely critical

Update, Wednesday (December 15), 15:20: In addition to Essen, the circle Anna problems reported by the vulnerability in the Java software Log4j. Due to the risk of security, the internet connection to the freeway federal office was disturbed, the city reports today. The online approval portal of the Anna circle is therefore unavailable for all internet-based approval processes at the moment. How long the disorder will take is unclear. In urgent cases, citizens should personally go to the admissions in Anna or Linen.

First message, Tuesday (December 14), 20:20: The Log4Shell was discovered Software Sweat sheet at the beginning of December. It allows Cyber ​​criminals according to BSI to make entries on a destination server and thus execute damage or even to take over the whole system. Worldwide, a billion computers could be affected on which the program Log4j is running.

Software manufacturers have been trying for days to conclude as extremely critical vulnerability with patches. So far, it was unclear to how internet users are affected by the Java breakdown (read all digital news on Java software).

NRW: Vulnerability in Log4j also restricts city

Meanwhile, cities in the Ruhr area also report problems by Log4j. For example, the City of Essen reported on Tuesday (14 December) that various online services are currently restricted.

Underneath, in the city, there are food applications in the geoporedal or the Corona Dashboard. The official map and the cadastral information is also affected. When the services concerned are again reachable, should not be estimated.

NRW: What do consumers need to consider because of the Log4j weak spot?

Web App Vulnerabilities - DevSecOps Course for Beginners

According to BSI, the vulnerability Log4Shell represents the greatest danger for the operators of servers and data centers. If the Java program Log4j is also carried out on private computers, but consumers can also be affected.

But: Even if not, users can balance damage by stolen their data, exercising important services or infected their systems, warns the BSI.

If software and IT manufacturers provide updates for programs or operating systems, they should be installed immediately, the Federal Office advises.

Category list picture: © Matthias Balk / DPA

Comments

Popular posts from this blog

Sega presents Hyenas, a multiplayer developed by The Creative Assembly

SEGA has passed through the sump of the Summer of Gaming of IGN to present a new game. Although with the sound they published yesterday on Twitter, it stretched that it could be a new version of Ecco The Dolphin, in the end we have met Hyenas , a multiplayer title developed by The Creative Assembly , those in charge of Halo Wars 2 and Alien Isolation. Although at the moment it has no specific release date, we do know that it will be on Xbox One, Xbox Series X and S, PlayStation 4, PlayStation 5 and PC, through Steam and the Epic Games Store. As its creative director, Charlie Bewsher, tells us in the presentation of IGN, the game will be a first-person shooting game with multiplayer games, which will face both players and the title environment (PVEVP). In each of these games, 15 different users will face, divided into five teams from three people each, who will have the objective of steal way we had to put Sonic here). After getting them, we will have to escape from the place w...

Metroid Dread: Can you change the controls? answered

By submerging in Metro id Dread, the last game of the Metro id series, you may wonder if you can change the control scheme and how to do it. It is possible that some buttons assignments do not seem completely natural, and you may want to change them. We will answer your question If you can or do not change the controls in Metro id Dread. Can you change the controls in Metro id Dread? Unfortunately, you can not change the controls or assignments of buttons in Metro id Dread. There are no set configurations to change or re-link attack, movement, Aaron or Morph Ball controls, which seems quite typical of the Nintendo Switch games. However, if you really can not admit some button assignments, or if you have difficulty running any of the controls, there is a way to avoid it. The custom driver configurations can be changed through the switch configuration menu, which makes the assignments of buttons universal in all games. Up to five controller configurations can be stored. Since you c...

Elden Ring Fans Stunned by Low-Key DLC Announcement

Elden Ring DLC was introduced just hours back on February 28, via a tweet from the game's official English-facing Twitter account. FromSoftware just dropped the statement on a random Tuesday, and now some Elden Ring followers are perplexed at why there had not been much more build-up to the grand expose. As the article below vouches for, FromSoftware truly did just go down the info at 3 am for East Coastline United States followers. Hey, it's not as if America is the only time area that feeds on the face of earth, as much of the Reddit comments aim out, however it's still a bit of a head-scratching time for significant DLC to be exposed. Elden Ring fans can't believe the video game's highly-anticipated DLC was introduced in one of the most casual way imaginable. No chance they just revealed DLC in a tweet at 3 am on an arbitrary Tuesday from r/Elden Ring 5PM on a Tuesday in Japan, possibly almost right to go down a bombshell tweet, claims on Reddit individual...