---

Message-ID: <3cfdeaf6-cbcd-9e12-3cb4-4bff86f7f698@gmail.com> Date: 12 Dec 2021 12:20:59 -0500 From: Bill Horne <malQassRimiMlation@gmail.com> Subject: The Virginia Consumer Data Protection Act, the Colorado Privacy Act, and the Draft Connecticut Privacy Legislation: An Overview and Practical Guide Just when organizations start to feel comfortable with the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), this year we saw the passage of two new comprehensive privacy laws in Virginia and Colorado and nearly another in Connecticut. This article discusses the Virginia Consumer Data Protection Act (VCDPA) and the Colorado Privacy Act (CoPA) and identifies parallels and differences between these statutes and other privacy laws. The article also discusses the pending comprehensive privacy law in Connecticut – we anticipate its passage in the near future. https://www.natlawreview.com/article/virginia-consumer-data-protection-act-colorado-privacy-act-and-draft-connecticut?utm_source=3DRobly.com&utm_medium=email&utm_campaign=2021-12-08Cybersecurity+Legal+News&utm_content=898eb0ede5f6d08ef9cdb4a4ef16767f -- I don't want to say that I'm old and worn out, but I'm never anywhere near the curb on trash day (Remove QRM from my email address to write to me directly)

---

Message-ID: <e4b7bbbe-5f44-5140-a811-1bc4be66a5f4@gmail.com> Date: Mon, 13 Dec 2021 12:33:51 -0500 From: Bill Horne <malQRMassimilation@gmail.com> Subject: Log4j zero-day flaw: What you need to know and how to protect yourself The Log4j vulnerability affects everything from the cloud to developer tools and security devices. Here's what to look for, according to the latest information. by Liam Tung <https://www.zdnet.com/meet-the-team/eu/liam-tung/> A flaw in Log4j, a Java library for logging error messages in applications, is the most high-profile security vulnerability on the internet right now and comes with a severity score of 10 out of 10. The library is developed by the open-source Apache Software Foundation and is a key Java-logging framework. Since last week's alert by CERT New Zealand <https://www.zdnet.com/meet-the-team/eu/liam-tung/> A flaw in Log4j, a Java library for logging error messages in applications, is the most high-profile security vulnerability on the internet right now and comes with a severity score of 10 out of 10. The library is developed by the open-source Apache Software Foundation and is a key Java-logging framework. Since last week's alert by CERT New Zealand <https://www.zdnet.com/article/security-warning-new-zero-day-in-the-log4j-java-library-is-already-being-exploited/> that CVE-2021-44228 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=3DCVE-2021-44228>, a remote code execution flaw in Log4j, was already being exploited in the wild, warnings have been issued by several national cybersecurity agencies, including the Cybersecurity and Infrastructure Security Agency (CISA) and the UK's National Cyber Security Centre (NCSC). Internet infrastructure provider Cloudflare said Log4j exploits started on December 1 <https://www.zdnet.com/article/log4j-rce-activity-began-on-december-1-as-botnets-start-using-vulnerability/>. https://www.zdnet.com/article/log4j-zero-day-flaw-what-you-need-to-know-and-how-to-protect-yourself/ Bill -- I don't want to say that I'm old and worn out, but I'm never anywhere near the curb on trash day