CISA, FBI and NSA Publish Joint Advisory and Scanner for Log4j Vulnerabilities

Cybersecurity agencies from Australia, Canada, New Zealand, the U.S., and the U.K. on Wednesday released a joint advisory in response to widespread exploitation of multiple vulnerabilities in Apache’s Log4j software library by nefarious adversaries. “These vulnerabilities, especially Log4Shell, are severe,” the intelligence agencies said in the new guidance. “Sophisticated cyber threat actors are actively scanning…

China suspends deal with Alibaba for not sharing Log4j 0-day first with the government

China’s internet regulator, the Ministry of Industry and Information Technology (MIIT), has temporarily suspended a partnership with Alibaba Cloud, the cloud computing subsidiary of e-commerce giant Alibaba Group, for six months on account of the fact that it failed to promptly inform the government about a critical security vulnerability affecting the broadly used Log4j logging…

Dinner is servoed – TechCrunch

I’ve been up to my neck in CES planning — and, I suppose, unplanning this week. There’s a strange disconnect getting pitches for the one millionth UV light sanitizing robot while you’re weighing the pros and cons of attending a show in-person, amid the latest variant surge. Ultimately, we’ve decided not to go to Vegas…