Feds: Health sector bad actors ‘actively leveraging’ Log4J vulnerabilities

The Health Sector Cybersecurity Coordination Center (HC3) has warned that the healthcare sector remains highly vulnerable to attacks exploiting the vulnerabilities in the Log4J logging tool. State-sponsored actors including China, Iran, Russia, and North Korea are believed to be taking advantage of the flaws, while ransomware groups like Conti pose a significant threat. HC3 recommends downloading the latest version of Log4J and implementing cybersecurity measures. The Cybersecurity and Infrastructure Security Agency (CISA) also urged US organizations to take immediate action to reduce cyber risks.