Bad things come in threes: Apache reveals another Log4J bug • The Register A third bug has been found in the Log4j system. There has been three new versions of the software since the crisis started.
National Cyber Security Centre Threat Report
Weekly Threat Report 17th December 2021 – NCSC.GOV.UK
Log4j – Java Packages
As predicted the impact of this vulnerability is far reaching. Check if it impacts you. Google: More than 35,000 Java packages impacted by Log4j vulnerabilities – The Record by Recorded Future
Log4j advice for board members from the National Cyber Security Centre (NCSC)
Log4j critical vulnerability advice for boards – NCSC.GOV.UK
More about Log4j
This was always going to be an issue when we posted about it last week – here is more information. Log4shell: US demands Christmas Eve deadline for hack fix – BBC News CISA issues emergency directive to fix Log4j vulnerability • The Register CISA issues ’emergency directive,’ orders federal agencies …