NetWitness and Datashield Collaboration Mitigates Impact of Log4j Java Security Vulnerability
Longtime Cybersecurity Partners Leveraging Each Other’s Strengths to Protect Enterprise Customers Against This Widespread Zero-Day Attack
BEDFORD, MA – December 15, 2021 – NetWitness, an RSA business, and globally trusted provider of cybersecurity technologies and incident response services, today announced that it is collaborating with longtime partner, Datashield, an ADT company and provider of Managed Detection and Response (MDR) services, to help customers identify the critical, zero-day security vulnerability in the Apache Log4j Java library and to take action to mitigate the impact of this vulnerability. NetWitness Network Detection and Response (NDR) technology provides Datashield with the visibility of where Log4j vulnerabilities exist, insight through a customized Packet Parser to identify if this vulnerability is being exploited within their monitored environment, and the ability to take prompt action to remediate.
“The Apache Log4j security flaw has the potential to have a major impact on enterprises around the world, and it’s critical that security teams take immediate action to patch the vulnerability,” said David Norlin, CISO of Datashield. “Through our long and successful partnership with NetWitness, we were able to use NetWitness Network Detection and Response (NDR) technology to identify which of our customers were impacted and take immediate action. The awareness and visibility that NetWitness delivered is critical in situations like this.”
Rohit Ghai, CEO of RSA Security and NetWitness, said, “Zero-day exploits like the Log4j vulnerability are a threat to the majority of users around the globe. We’re proud that our NDR solution is enabling Datashield to take fast action to protect its customers.”
NetWitness has released an advisory notice to help customers mitigate the threat to their NetWitness systems, which can be found here. More information on the vulnerability can be found in our Background and Detection Rules and in our recent blog post. Any customers who need assistance should contact NetWitness immediately.
Datashield customers who have been impacted or need assistance in determining if they have been affected, should contact Datashield.
NetWitness, an RSA® Business, provides comprehensive and highly scalable threat detection and response capabilities for organizations around the world. The NetWitness Platform delivers complete visibility combined with applied threat intelligence and user behavior analytics to detect, prioritize, investigate threats, and automate response. This empowers security analysts to be more efficient and stay ahead of business-impacting threats. For more information, go to netwitness.com.
©2021 RSA Security LLC or its affiliates. All rights reserved. RSA and the RSA logo are trademarks of RSA Security LLC or its affiliates. For a list of RSA trademarks visit https://www.rsa.com/en-us/company/rsa-trademarks. Other trademarks are trademarks of their respective owners. RSA believes the information in this document is accurate. The information is subject to change without notice.