WSJ Report by Robert McMillan
"Cybersecurity officials at major tech companies are scrambling to patch a serious flaw in a widely used piece of internet software that security experts warn could unleash a new round of cyberattacks.
The bug, hidden in an obscure piece of server software called Log4j, has prompted investigations into the depth of the problem within Amazon.com Inc., AMZN -1.12% Twitter Inc. TWTR -1.94% and Cisco Systems Inc., CSCO 2.95% according to the companies.
Amazon, the world’s biggest cloud computing company, said in a security alert, “We are actively monitoring this issue, and are working on addressing it.”
The Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency on Friday issued an alert about the vulnerability and urged companies to take action. CISA Director Jen Easterly on Saturday added, “To be clear, this vulnerability poses a severe risk. We will only minimize potential impacts through collaborative efforts between government and the private sector.”"ARTICLE