Security News > 2022 > January > You better have patched those Log4j holes or we'll see what a judge has to say – FTC

You better have patched those Log4j holes or we'll see what a judge has to say – FTC
2022-01-05 22:30

The FTC is advising companies to consult the US Cybersecurity and Infrastructure Security Agency's guidance on dealing with the Log4j flaws.

If companies fail to fix their code and lose customer data, the FTC says it may just see what a judge thinks about that.

"It is critical that companies and their vendors relying on Log4j act now, in order to reduce the likelihood of harm to consumers, and to avoid FTC legal action."

The tribulations of Equifax may not be the threat the FTC thinks it is, given the skepticism about the commission's effectiveness.

The appointment of Columbia Law School professor and tech company critic Lina Khan last year as Chair of the FTC has raised hopes that the commission can become more effective in policing irresponsible or unlawful behavior among corporate giants, particularly in the tech industry.

"The FTC intends to use its full legal authority to pursue companies that fail to take reasonable steps to protect consumer data from exposure as a result of Log4j, or similar known vulnerabilities in the future."


News URL

https://go.theregister.com/feed/www.theregister.com/2022/01/05/ftc_log4j_fix/