Log4Shell Response and Mitigation Recommendations

Credit to Author: Mat Gangwer| Date: Sat, 18 Dec 2021 00:20:04 +0000

Summary and Background Log4j is an open-source logging framework developed by the Apache Foundation which is incorporated into many Java-based applications on both servers and end-user systems. Initially released, on December 9, 2021, Log4Shell (the nickname given to this vulnerability) is a pervasive and widespread issue due to the integrated nature of Log4j in many […]

Read more

Inside the code: How the Log4Shell exploit works

Credit to Author: gallagherseanm| Date: Fri, 17 Dec 2021 14:51:25 +0000

The critical vulnerability in Apache’s  Log4j Java-based logging utility (CVE-2021-44248) has been called the “most critical vulnerability of the last decade.”  Also known as Log4Shell, the flaw  has forced the developers of many software products to push out updates or mitigations to customers. And Log4j’s maintainers have published two new versions since the bug was discovered—the second completely eliminating the […]

Read more

Multi-cloud threat detection and response with Sophos XDR

Credit to Author: Rich Beckett| Date: Fri, 17 Dec 2021 13:00:18 +0000

Sophos Extended Detection and Response (XDR) now goes even further in the public cloud, adding Microsoft Azure (Azure) and Google Cloud Platform (GCP) activity logs alongside Amazon Web Services (AWS) – helping security teams see the bigger picture across public cloud environments. Integrating data from the Sophos cloud security posture management solution, Cloud Optix, Sophos […]

Read more

Microsoft wraps up 2021 with 64 patched vulnerabilities—including Windows 7 fixes

Credit to Author: gallagherseanm| Date: Tue, 14 Dec 2021 18:41:59 +0000

The final Patch Tuesday of the year is here, and while Log4J may have cast a very long shadow over this month, Microsoft has released fixes for 64 more vulnerabilities in its software products, including 16 Chromium-based bugs in the Edge browser that were already patched in updates pushed since last month. Some of the […]

Read more