It certainly was an all-hands-on-deck job for organizations across the globe when the Log4j vulnerability was uncovered: a brand new (ISC)² research discovered that 52% of safety groups spent weeks or greater than a month fixing the flaw of their networks — and a few 48% did so on weekends and through their vacation time.
Round 27% of respondents to the (ISC)² survey say their organizations had been much less safe in the course of the remediation course of, and 23% report that their 2002 safety priorities had been delayed as a result of intense give attention to Log4j fixes.
“The primary takeaway from the Log4j disaster and this knowledge is that devoted cybersecurity professionals are unfold skinny and want extra assist to successfully remediate zero-day exploits whereas nonetheless sustaining total safety operations,” Clar Rosso, CEO of (ISC)², mentioned in an announcement. “Log4j is one crucial vulnerability of many and it is solely a matter of time earlier than the following novel assault happens. To keep away from burnout — the implications of which might result in catastrophic breaches — organizations should assist their cybersecurity groups by increasing their recruiting efforts, offering extra assets and investing within the improvement and retention of their current workers.”
The findings are based mostly on an internet ballot carried out this month with 269 cybersecurity professionals who participated within the survey.