Cyber vulnerability – Log4j update and actions

Recently, a severe vulnerability has been identified in Log4j which is a piece of software widely used by applications and other services across the internet.

You may have heard about this in the news or read about it online.

What does it mean for your business?

The vulnerability means businesses can be exposed to cyber attacks, so it’s important that your IT team or outsource service provider take action to identify if your systems are at risk. The National Cyber Security Centre (NCSC) has issued some advice and guidance on fixing the issue here.

What does it mean for your clients?

It may not be immediately clear to your clients if the software, servers or systems they use rely on the Log4j component, so it's also vital they follow the guidance from the NCSC above.

In addition, if you have any clients who are Aviva Cyber Policyholders or Computer Policyholders (with Virus & Hacking extension) it's critical they install the relevant updates and ‘patch’ their systems accordingly to ensure they continue to receive all the benefits of their policy.