Discussions regarding ways to enhance software security are scheduled to take place in January between White House officials and heads of several major software development and cloud service organizations, according to CNN
The talks are being pushed by National Security Adviser Jake Sullivan in the wake of the discovery of the critical Log4j
vulnerability that potentially leaves companies and devices around the world open to breaches by threat actors, which Sullivan described as “a key national security concern” in his letter to the technology companies.
Private companies and government agencies across the globe have been working to patch the vulnerability amid reports that nation-backed threat actors and ransomware groups have been actively exploiting the flaw, and the US Cybersecurity and Infrastructure Security Agency responded on Dec. 17 by issuing an emergency directive mandating system updates at all federal civilian agencies.
A National Security Council representative declined to reveal the identities of the companies that have been invited to the meeting.