SANS NewsBites

US Federal Agencies Must Mitigate Log4J Vulnerability by December 24; Log4J Updates Again; CISA and White House Urge Critical Infrastructure Owners and Operators to Bolster Security

December 17, 2021  |  Volume XXIII - Issue #98

Internet Storm Center Tech Corner

Microsoft Patches

Log4j Updates

Log4j Scanner

Log4j Updates

Undetected Powershell Backdoor

How the "Contact Forms" Campaign Tricks People

Bluetooth Used to Extract WiFi Secrets

Webkit Bug Exploitable in PS4

Lenovo Privilege Escalation Vulnerability

Apple Updates

Adobe Security Updates

Remote Deserialization Bug in Microsoft RDP Client Through Smart Card Extension