In late November 2021, a flaw was discovered in a popular open-source coding framework called Log4j.
Log4j is omnipresent in the cyber universe and on our campuses, including in applications from Amazon, Microsoft, IBM, Google, Cisco, Twitter, Steam—and even the United States Cybersecurity and Infrastructure Security Agency (CISA).
The situation has spotlighted the fact that vast swaths of campus software are built with open-source programs.
This QuickTalk will bring together members from our EDUCAUSE Connect Community groups to share best practices and lessons learned in identifying, tracking, communicating, and mitigating this issue.
