Belgian Ministry of Defense affected by Log4j?

Sicherheit (Pexels, allgemeine Nutzung)[German]The vulnerability CVE-2021-44228 in the JAVA library log4j is drawing wider circles. The Belgian Ministry of Defense may have shut down its networks after a serious cyberattack, admitting as much in the night from Sunday to Monday. Reports suggests that it was related to the log4j vulnerability CVE-2021-44228.
I had reported in the blog post 0-day CVE-2021-44228 in Java library log4j puts many projects at risk about the vulnerability that affects numerous systems. And it was known that the German Federal Finance Court was among the victims who had to take their website offline (see Log4j news: New vulnerability, Federal Finance Court website down, many companies unpatched).


Belgian Ministry of Defense shuts down network

I became aware of the facts via the following tweet by Catalin Cimpanu. The Belgian Ministry of Defense has taken parts of its IT network offline because of a cyber attack. The email servers are also affected.

Belgisches Verteidigungsministerium nimmt IT offline

This Flemish-language article contains some references. Since last Thursday, the Ministry of Defense of Belgium has been struggling with the consequences of a serious cyber attack. Part of the computer network cannot be used for the time being, according to the spokesman. Spokesman Olivier Séverin commented:

The Defense Ministry discovered an attack on its computer network with Internet access on Thursday. Quarantine measures were quickly taken to isolate the affected parts. The priority is to keep the defense network operational.

Throughout the weekend, our teams were deployed to bring the problem under control, continue our operations and alert our partners. The priority is to keep the network operational. We will continue to monitor the situation.

As a result of the quarantine measures, the mail system, for example, has been out of service since. The cyberattack occurred, according to the linked article, after a security vulnerability (log4j) was discovered in the software just last week. It is not clear who is behind the computer attack on the defense sector. However, the Ministry of Defense currently refuses to provide any information on whether the attack took place via the log4j vulnerability using a Log4Shell.

Similar articles:
0-day CVE-2021-44228 in Java library log4j puts many projects at risk
log4j vulnerability CVE-2021-44228: Patch your Minecraft
VMware products threatened by log4j vulnerability CVE-2021-44228

Cookies helps to fund this blog: Cookie settings

This entry was posted in Security and tagged . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *