The Log4j and Log4Shell vulnerability and exploits are being actively used by threat actors. CISA Updates Advisory on Cyber Actors Continued Exploitation of Log4Shell in VMware Horizon Systems | CISA As predicted Log4j is going to be a problem for a long time – Smart Thinking Solutions
Juniper Network security updates released
Juniper Networks Releases Security Updates for Multiple Products | CISA
As predicted Log4j is going to be a problem for a long time
The Cyber Safety Review Board is operated by The Department of Homeland Security and in it’s inaugural report the Log4j vulnerability, spread and exploitation is discussed: CSRB Report on Log4j – Public Report – July 11 2022_508 Compliant (cisa.gov) It makes interesting reading. I wonder just how many developers do …
Continue reading “As predicted Log4j is going to be a problem for a long time”
CISA adds one known vulnerability to it’s database for Microsoft Windows
The US Cybersecurity and Infrastructure Security Agency has added one new vulnerability to it’s Known Exploited Vulnerabilities Catalog for a Microsoft Windows privilege escalation vulnerability – this has been addressed in Microsoft’s July 2022 Patch Tuesday. CISA Adds One Known Exploited Vulnerability to Catalog  | CISA
CISA security patch advisories
The US Cybersecurity and Infrastructure Security Agency (CISA) has issued several advisories about security patches available from a range of vendors, including Adobe and Citrix: Adobe Releases Security Updates for Multiple Products | CISA SAP Releases July 2022 Security Updates | CISA Citrix Releases Security Updates for Hypervisor | CISA
