Possible Legal Actions Coming to some Companies due to the Log4j Data Breaches — Redmond Channel Partner

Companies that failed to address vulnerabilities in the Log4j framework, leading to data breaches, may face lawsuits from the US Federal Trade Commission (FTC). The FTC stated that companies have a duty to mitigate known software weaknesses to avoid the risk of harming consumers and breaching federal laws. The agency has directed businesses to follow the Log4j guidance published by the US Cybersecurity and Infrastructure Security Agency (CISA).