Photo by Whitehorse Star
Yukon Information and Privacy Commissioner (IPC), Diane McLeod-McKay
Advisory on recent security threat issued to users of Java
The Yukon Information and Privacy Commissioner (IPC), Diane McLeod-McKay, has issued an advisory to assist Yukon organizations in learning about a recent security threat.
The Yukon Information and Privacy Commissioner (IPC), Diane McLeod-McKay, has issued an advisory to assist Yukon organizations in learning about a recent security threat.
A security issue has arisen recently which could affect users of a logging utility in the Java programming language.
Her advisory is specifically aimed at helping custodians, set out in the Health Information Privacy and Management Act (HIPMA), and public bodies, set out in the Access to Information and Protection of Privacy Act (ATIPPA).
The threat is serious enough that many experts have been describing it as having “set the Internet on fire.”
“Custodians and public bodies in the Yukon are legally obligated to protect the personal health information or personal information that they hold,” McLeod-McKay said Tuesday.
“The recent security threat has the potential to put this information at risk of unauthorized access or theft, or could make the information unavailable to the organizations that hold it.
“Because some organizations may not be aware of this threat, we are providing some information to help them learn about it and about ways to mitigate the risks of a breach.”
Earlier this month, the Apache Software Foundation issued an advisory regarding a vulnerability on Log4j, a logging utility written in the Java programming language, which is widely used.
There have already been reports of exploitation, data theft and ransomware attacks as a result of this security issue.
“We highly recommend that custodians and public bodies read our advisory, and then work with their IT department or IT service provider to reduce as soon as possible the risks of a breach to the personal health information and personal information that they hold,” added McLeod-McKay.
“They should also be aware of their duty under law to report any breaches of personal health information or personal information to the individuals affected and to my office if there is a risk of significant harm as a result of the breach.”
The Ombudsman, Information and Privacy Commissioner, and Public Interest Disclosure Commissioner is an independent officer of the Yukon Legislative Assembly.
Add your comments or reply via Twitter @whitehorsestar
In order to encourage thoughtful and responsible discussion, website comments will not be visible until a moderator approves them. Please add comments judiciously and refrain from maligning any individual or institution. Read about our user comment and privacy policies.
Your name and email address are required before your comment is posted. Otherwise, your comment will not be posted.
Popular discussions
- Comments should be thoughtful, not abusive (10)
- Proposed building called inappropriate for neighbourhood (7)
- Building’s entry system swiftly repaired (3)
- Electric vehicles will shuttle bus drivers to and from routes (3)
- Meters pilfered, damaged beyond repair (3)
- Respiratory illness season is proving routine, MD says (2)
- Games Centre to receive major improvements (2)
- Hoofed animals may come under management protocols (1)
Comments (3)
Up 13 Down 9
Hypocrites one and all… Gossippers and disturbers of the peace… on Dec 25, 2021 at 3:13 pm
You do not have my permission to put any of my personal information into your cyber files. You are obviously incapable of keeping my information secure. In fact, you cannot guarantee the safety of anyone's personal information.
At least with paper files you have break into an office building, break into a file room, and then into a cabinet.
Now you can sit back in the comfort of your own home and hack the information you want to. Great progress!
Not to mention that governments routinely have issues around privacy to begin with… It’s a mess here in the Yukon - FFS! You can hear various government workers from all levels of the governmental hierarchy talking about people and government business all over the Yukon - This store, this coffee shop etc. A disgusting mess of privacy violations.
Up 7 Down 7
Matthew on Dec 24, 2021 at 5:35 am
Mhmm, narrative is being played out upcoming planned cyber attack (Google Cyber Polygon).
Up 13 Down 2
bob on Dec 23, 2021 at 2:13 pm
The advisory they talk about can be found here
https://www.yukonombudsman.ca/news/view/158/32
serious stuff!