UC San Diego Campus Notice
OFFICE OF THE CHIEF INFORMATION SECURITY OFFICER,
UC SAN DIEGO AND UC SAN DIEGO HEALTH
December 16, 2021
Geisel library at sunset
ALL ACADEMICS AND STAFF AT UC SAN DIEGO (including UC San Diego Health)

Log4J Vulnerability Response and Actions Needed

Last week a new and pervasive vulnerability was announced in a commonly used component of the Java programming framework. Used in millions of programs globally, the “Log4J” vulnerability allows a hacker to easily gain remote access to vulnerable computers. UC San Diego has seen thousands of attacks against networked computers since the announcement, and campus and Health IT professionals have been working since last week to identify and secure vulnerable computers and services.  

However, this vulnerability is exceptionally difficult to detect remotely, and thus we need everyone responsible for computing resources, particularly in research environments that maintain their own systems, to apply the appropriate remediations outlined below. The severity of this situation is such that beginning Monday, December 20, when a vulnerable system is identified it will be immediately removed from the network.  

Immediate Actions
  • Log4J is embedded in a large number of commercial software applications. Be aware of any vendor updates for these packages and apply patches as quickly as possible.
  • Log4J is included with many popular open source products. Update to the latest version as soon as possible. Vulnerable computers should be turned off until they can be patched.
  • If updating to the latest version is not possible, it may be possible to temporarily mitigate exploit attempts by setting the system property "log4j2.formatMsgNoLookups'' to “true”; or remove the JndiLookup class from the classpath. Talk to your technical staff for assistance.
You may find further guidance on protecting systems and an FAQ at https://blink.ucsd.edu/technology/security/log4j.  

Help and Support
Please reach out to your respective service teams for assistance or questions.
 
Main Campus
  • Web: support.ucsd.edu/its
  • Email: servicedesk@ucsd.edu
  • Phone: 858-246-4357
Health Sciences and UC San Diego Health
  • Web: 3help.ucsd.edu
  • Email: 3help@ucsd.edu
  • Phone: 619-543-4357 or Ext. 3-HELP

Michael Corn
Chief Information Security Officer
UC San Diego

 
Ken Wottge
Chief Information Security Officer
UC San Diego Health
University of California San Diego, 9500 Gilman Drive, La Jolla, CA, 92093