Scottish organisations warned to update IT systems as cyber risk emerges

Written by PublicTechnology staff on 30 December 2021 in News
News

A potential hack was identified earlier this month

Credit: Gerd Altmann/Pixabay

The Scottish Business Resilience Centre (SBRC) has urged organisations across Scotland to update their computer systems to avoid a potential hack that was identified at the beginning of this month.

It is feared that a flaw detected in open-source software Log4j, which is widely used to record activity on apps and websites, could be exploited by hackers and cybercriminals to steal sensitive data. Dubbed log4shell, the flaw was discovered by the developers behind Log4j on 9 December.

SBRC’s remit is to help businesses around the country meet the risks posed to them by all kinds of threats, including cyber dangers. Its backers include the Scottish Government, as well as police, fire and rescue services, and representatives of various industry bodies.


Related content


Chief executive Jude McCorry said all businesses across Scotland could be at risk of a cyberattack due to the flaw. She urged firms to ensure all software, end-user computing devices, and servers have been updated.

“While the impact of log4shell is yet undetermined, organisations could still be in the dark if they even use Log4j in their systems,” she said. “All organisations must consider themselves at risk of this global vulnerability until it has been confirmed that they are not. There is no time to waste here; the SBRC is calling on all businesses to take action now to avoid potentially catastrophic results.

McCorry added: “It is not just work devices that are on the line – personal devices are also at risk and so must be part of the updating process. Acting now and looking into other services that are used – including third-party software – will help to provide peace of mind. Given the meteoric rise in cyber incidents this year, individuals and organisations must turn to trusted sources to keep up to date on credible threats to operations like this.”

 

Share this page

Tags

Categories

CONTRIBUTIONS FROM READERS

Please login to post a comment or register for a free account.

Related Articles

Regulator urges review of ‘systemic risks’ of government use of private messaging
14 July 2022

ICO reveals findings of year-long investigation

Lawyers told to stop advising clients to pay cyber ransoms
11 July 2022

Regulator and cyber intelligence agency write joint letter seeking engagement with trade body for solicitors

Russia: sanctions tightened on exports of monitoring and military tech
24 June 2022

New measures prohibit supply of any tech used for ‘internal repression’

Police investigated 4,300 cyber offences last year – but charged fewer than 100 criminals
12 August 2022

The proportion of offences resulting in a formal charge increased slightly, but remains at barely more than one in every 50