Addressing Linux vulnerabilities

Following the recent publicity of Linux vulnerabilities, here is an announcement from The Linux Foundation, of $10m of donations to their Open Source Security Foundation (OpenSSF). Among the donors are Microsoft and Google. Linux Foundation announces $10 million cross-industry investment in Open Source Security Foundation (scmagazine.com)

Log4j exploits and behind the scenes with the Apache patching team

Here is an interesting article from the team at Apache dealing with patching the Log4j problem: The Apache Log4j team talks about the Log4Shell patching process – The Record by Recorded Future But the exploits in the wild are still happening: Threat actor target Ubiquiti network appliances using Log4Shell exploits …