Bad things come in threes: Apache reveals another Log4J bug • The Register A third bug has been found in the Log4j system. There has been three new versions of the software since the crisis started.
Just like buses – Log4j flaws come in threes
US federal government agency compromised with a sophisticated attack
The United States Commission on International Religious Freedom (USCIRF) is understood to have been suffering a advanced persistent threat (APT) compromising the internal networks. US federal agency compromised in suspected APT attack – The Record by Recorded Future This agency has a role in shaping US government policy when it …
Continue reading “US federal government agency compromised with a sophisticated attack”
Log4j – Java Packages
As predicted the impact of this vulnerability is far reaching. Check if it impacts you. Google: More than 35,000 Java packages impacted by Log4j vulnerabilities – The Record by Recorded Future
Log4j advice for board members from the National Cyber Security Centre (NCSC)
Log4j critical vulnerability advice for boards – NCSC.GOV.UK
VMware vulnerability
A serious vulnerability in VMware has been discovered: VMSA-2021-0029 (vmware.com) As the article on The Register says “ignore this at your peril”. Over Log4j? VMware has another critical flaw for you to fix • The Register
