Blog Layout

December 2021 IT Security Update

December 2021 IT Security Update
This is likely the last security update of the year. Included are updates on : 
  • Log4J
  • Godaddy
  • Windows 11
  • PrintNightmare 
Feel free to skip to the item(s) that you are most interested in below.

Log4J is a “free” program used by millions of software developers and has been in the news since it was publicly acknowledged as a problem on December 9th of this year.

Since this was made public the number of attacks using this vulnerability exploded. Most of the software using it are web based/cloud computing type programs. (Apple/MAC systems are affected as well). A local application such as PC Law would likely not be affected but we need to hear from each developer.

The program has a weakness (vulnerability) in the software that can be exploited by a hacker trying to infect you. The hacker can take control of your system or just watch and steal passwords etc. Many software vendors have been working feverishly to check their software, apply fixes if necessary and then declare their software safe. In most cases you would have been alerted by your software developer one way or the other. 

This issue is still evolving and if we receive information we deem important we will let you know. If you have not heard from your software developer you may want to follow up with them.

Godaddy – Godaddy was again breached. This seems like an annual thing. Anyone with a Wordpress site needs to change their WordPress admin login at minimum.

Windows 11 is out and you may be prompted to upgrade. Many fail because Windows 11 is very specific about what hardware it can run on. If it fails it normally just fails and rolls back whatever it did. A bigger problem though is Windows 11 has not been tested thoroughly and could cause other problems with other software. 

We strongly suggest waiting until at least June of next year to give Microsoft time to find most of the security issues that exist and to fix any problems with the current release. (Even then, we suggest you discuss with us before upgrading to 11). Let someone else be the guinea pig.

PrintNightMare – in the summer our security update discussed the PrintNightMare vulnerability that exposed many users to possible attack by hackers. Microsoft made several attempts to fix this problem however for many clients the cure was worse than the virus. 

Microsoft took some months but has finally released a reasonably stable patch and any of our clients on our service agreements will have had this rolled out.

All the best and have a great and safe 2022.
Share by: