Responding to Mega Cyber-Incidents
Summary
This article announces a webinar hosted by WiCyS and PayPal focusing on preparing for and improving response to major cyber incidents. The session will use PayPal's cybersecurity team's experience responding to the Log4j vulnerability as a case study.
IFF Assessment
The article discusses strategies and case studies for improving an organization's response to major cyber incidents, which directly benefits defenders by offering insights and best practices.
Severity
CISA KEV: Listed as actively exploited. Federal patch due: December 24, 2021. Known ransomware use: Known.
Defender Context
Understanding how organizations like PayPal responded to a widespread vulnerability like Log4j provides valuable lessons for incident response planning and execution. Defenders should pay attention to case studies of large-scale incidents to refine their own strategies for preparation, containment, and recovery.