Top news of the week: 23.12.2021.
Companies And Services
The internet runs on free open-source software. Who pays to fix it?
Volunteer-run projects like Log4J keep the internet running. The result is unsustainable burnout, and a national security risk when they go wrong.
A UAE agency put Pegasus spyware on phone of Jamal Khashoggi’s wife months before his murder, new forensics show
The new analysis challenges NSO claims that the murdered journalist's wife, Hanan Elatr, 'was not a target'
The Ministry of Industry and Information Technology said it will suspend work with Alibaba Cloud as a cybersecurity threat intelligence partner for six months
The Ministry of Industry and Information Technology said it will suspend work with Alibaba Cloud as a cybersecurity threat intelligence partner after the firm reported a critical security ...
What Did We Learn About Cyber Risk Management in 2021?
Review cybersecurity lessons from 2021, such as how cybercriminals learned new ways to exploit vulnerabilities. Signals are the secret weapon to counter them.
Log4j makes waves in the US financial industry
Like the SolarWinds attack, experts say Log4j is ubiquitous and of particular concern for financial sector institutions (FSIs).
Log4j Vulnerability Scanners and Detection Tools: List for MSSPs and Threat Hunters
List of Log4j & Log4Shell vulnerability scanner tools including Amazon Inspector, Arctic Wolf, Bi.Zone, Datto, Microsoft Defender, Qualys WAS, Tenable, Trend Micro & more.
asw178
Application Security Weekly Episode #178 – December 20, 2021 Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe 1. Evolving Security Testing – ...
Shifting security further left: DevSecOps becoming SecDevOps
Cybersecurity is becoming more automated and componentized in line with modern software architectures and development practices.