Hackers find 122 vulnerabilities — 27 deemed critical — during first round of DHS bug bounty program
The findings, first reported by CyberScoop, come in the first of three phases for the DHS bug bounty program.
Google Cloud offers good news and bad news on Log4Shell, other issues
Potential intruders are still scanning for the bug every day, but the company says many vendors have been on top of fixing vulnerable instances of Log4j software.
CISA's new JCDC worked as intended, witnesses say at Senate hearing on Log4Shell bug
Private-sector experts say that public-private threat sharing is key.
White House hosts open-source software security summit in light of expansive Log4j flaw
The meeting will combine tech leaders with feds.
Suspected Chinese hackers use Log4j flaw to deploy Night Sky ransomware, Microsoft warns
The findings coincide with U.S. government efforts to slow malicious cyber activity related to the issue, which is ubiquitous in the technology sector.
If hackers are exploiting the Log4j flaw, CISA says we might not know yet
The agency harkened back to the long delay between vulnerability discovery and the Equifax breach.