New Year Means Review and Plan
Let us not make the same mistakes as we may have done in the past when it was time to move to a new year. We should review the current…
Real Story of Log4J
Affected Software A significant number of Java-based applications are using log4j as their logging utility and are vulnerable to this CVE. To the best of our knowledge, at least the…
Log4J has been fixed by Apache Software foundation
Due to an actively exploited zero-day vulnerability: https://thehackernews.com/2021/12/extremely-critical-log4j-vulnerability.html This bug is a 10 of 10 on the CVSS rating from the article a snippet: Tracked as CVE-2021-44228 and by the…
Evangelize Cybersecurity? Is That Possible?
How much cybersecurity do you need? Just enough to stay out of the news? Will you ever be in the news? Have you had an incident response evaluation? Do you…
Always Patching Or else What Happens?
Yes there are rumblings of the ZeroLogon issue at Threatpost articles: Microsoft Zerologon Flaw Under Attack By Iranian Nation-State Actors. Dark Reading article: One year later… a look back at…