First up for new DHS Cyber Safety Review Board: Examining Log4j vulnerability, remediation

The new DHS-led Cyber Safety Review Board will focus first on “on the vulnerabilities discovered in late 2021 in the widely used log4j software library,” the department announced today, and will produce a report assessing impacts and providing recommendations from lessons learned.

“These vulnerabilities, which are being exploited by a growing set of threat actors, present an urgent challenge to network defenders. As one of the most serious vulnerabilities discovered in recent years, its examination will generate many lessons learned...