SN 854: Anatomy of a Log4j Exploit - Buggy KCode, WordPress Security

• Picture of the Week
• "Hack the Pentagon" with Log4j
• Open Source Software Security Summit
• Microsoft's January Patch Tuesday Review: The GOOD News
• Microsoft's January Patch Tuesday Review: The Not So Good News
• Check Your Router Firmware Updates
• Chrome to Implement PNA
• Three High Severity Flaws in WordPress Add-ons
• Closing the Loop: Listener feedback
• SpinRite
• Anatomy of a Log4j Exploit

We invite you to read our show notes at https://www.grc.com/sn/SN-854-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

• newrelic.com/securitynow
• canary.tools/twit - use code: TWIT
• kolide.com/twit