Experts from Cisco, Palo Alto Networks and think tank The Atlantic Council discussed open-source software security at a U.S. Senate hearing on Tuesday. Experts outlined immediate Log4j mitigation efforts, subsequent scanning and exploitation and industry’s now-heightened collaboration with the federal government. A renewed push for incident reporting requirements and the state of affairs with the Russia-Ukraine conflict, particularly around threats to Ukraine’s critical infrastructure, were discussed. A bipartisan bill that would require critical infrastructure providers to report cyberattacks within 72 hours and any ransom payments within 24 hours has been reintroduced.”]
Source: https://www.cuinfosecurity.com/security-experts-discuss-log4j-mitigation-before-us-senate-a-18481