Today's Headlines and the latest #cybernews from the desk of the #CISO:

Log4Shell attacks expand to nation-state groups as More Security Issues Come to Light

CISA tells federal agencies to patch Log4Shell before Christmas

Microsoft Patches 67 Security Flaws, Including Zero-Day Exploited by Emotet

SAP Patches Log4Shell Vulnerability in 20 Applications

Adobe Joins Security Patch Tuesday Frenzy

 

Story Links:

https://therecord.media/log4shell-attacks-expand-to-nation-state-groups-from-china-iran-north-korea-and-turkey/ (https://therecord.media/log4shell-attacks-expand-to-nation-state-groups-from-china-iran-north-korea-and-turkey/)

https://www.securityweek.com/problematic-log4j-functionality-disabled-more-security-issues-come-light (https://www.securityweek.com/problematic-log4j-functionality-disabled-more-security-issues-come-light)

https://therecord.media/cisa-tells-federal-agencies-to-patch-log4shell-before-christmas/ (https://therecord.media/cisa-tells-federal-agencies-to-patch-log4shell-before-christmas/)

https://www.securityweek.com/microsoft-patches-67-security-flaws-including-zero-day-exploited-emotet (https://www.securityweek.com/microsoft-patches-67-security-flaws-including-zero-day-exploited-emotet)

https://www.securityweek.com/sap-patches-log4shell-vulnerability-20-applications (https://www.securityweek.com/sap-patches-log4shell-vulnerability-20-applications)

https://www.securityweek.com/adobe-joins-security-patch-tuesday-frenzy (https://www.securityweek.com/adobe-joins-security-patch-tuesday-frenzy)

 

“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

****

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Tech Town Square, Other Side of Cyber and CISOs Secrets

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/ (https://www.linkedin.com/in/james-azar-a1655316/)

James on Parler: @realjamesazar

Telegram: CyberHub Podcast

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.