Panel finds notorious Log4j internet bug did not lead to any “significant” attacks on critical infrastructure

The newly created U.S. Cyber Safety Review Board, which investigates major cybersecurity failures, says that the Log4j internet bug did not result in any significant attacks on critical infrastructure. The board, which issued its first report, also warned that potential for breaches remains and urged ongoing vigilance. The board found that despite the bug’s widespread vulnerability, it didn’t compromise critical infrastructure or lead to any high impact incidents.