Belgian defence ministry admits attackers accessed its computer network by exploiting Log4j vulnerability • The Register As if you needed reminding that if the Log4j vulnerability impacts you, you need to take action.
Just like buses – Log4j flaws come in threes
Bad things come in threes: Apache reveals another Log4J bug • The Register A third bug has been found in the Log4j system. There has been three new versions of the software since the crisis started.
Log4j – Java Packages
As predicted the impact of this vulnerability is far reaching. Check if it impacts you. Google: More than 35,000 Java packages impacted by Log4j vulnerabilities – The Record by Recorded Future
Log4j advice for board members from the National Cyber Security Centre (NCSC)
Log4j critical vulnerability advice for boards – NCSC.GOV.UK
More about Log4j
This was always going to be an issue when we posted about it last week – here is more information. Log4shell: US demands Christmas Eve deadline for hack fix – BBC News CISA issues emergency directive to fix Log4j vulnerability • The Register CISA issues ’emergency directive,’ orders federal agencies …