Houston Chronicle

What is Log4j? A cybersecurity expert explains the latest internet vulnerability, how bad it is and what's at stake

Log4Shell, an internet vulnerability that affects millions of computers, involves an obscure but nearly ubiquitous piece of software, Log4j. The software is used to record all manner of activities ...
Becker's Hospital Review

White House to host tech firms to address Log4j vulnerability

Software developers and tech firms including Google and Apple will meet with the Biden administration to discuss Log4j and how to make it more secure, according to a CNN report Jan. 13. The ...
Bleeping Computer

Over 30% of Log4J apps use a vulnerable version of the library

Roughly 38% of applications using the Apache Log4j library are using a version vulnerable to security issues, including Log4Shell, a critical vulnerability identified as CVE-2021-44228 that carries ...
Becker's Hospital Review

HHS warns of healthcare cyberattack risk tied to Log4j vulnerability

The HHS Cybersecurity Program has issued a letter warning of a software vulnerability that puts healthcare providers across the country at risk of a cyberattack. The letter, sent Dec. 10, warns of a ...
FedScoop

Senators reintroduce bipartisan bill to push for open source software security within federal gov

WASHINGTON, DC - DECEMBER 07: Sen. Gary Peters (D-MI) speaks at a press conference alongside U.S. Senate Majority Leader Chuck Schumer (D-NY) about the Senate Democrats expanded majority for the next ...
Nextgov

Top 4 Lessons From Log4j

Since the announcement of the Log4j vulnerability on December 9, 2021, it’s been all-hands-on-deck to safeguard applications. We appreciate those who shared suggestions on how to further support your ...
CSOonline

Cloudflare report: Log4j remains top target for attacks in 2023

Log4j remained a top attack vector for threat actors in 2023, while a new vulnerability, HTTP/2 Rapid Reset is emerging as a significant threat to organizations, according to Cloudflare’s annual “Year ...
Dark Reading

3 Lessons Learned in Vulnerability Management

As we pass the first anniversary of the Log4j vulnerability disclosure, it's a timely reminder that when a vulnerability is serious, it deserves our utmost attention. Organizations taking ...
Dark Reading

Log4j Vulnerabilities Are Here to Stay — Are You Prepared?

The widespread vulnerability that first appeared in Apache Log4j in 2021 will continue to be exploited, potentially even in worse ways than we've seen to date. The more worrisome aspect of these ...
Nextgov

Securing open source software is a team sport

Two years ago, the joint government-private sector response to the Log4j vulnerability that spawned 800,000 attacks worldwide led to the Enduring Security Framework for federal agencies adopting open ...
Nasdaq

Nubeva Releases Log4j Auto HotPatcher with Free-Trial of Ransomware Reversal Solution

SAN JOSE, Calif., Jan. 06, 2022 (GLOBE NEWSWIRE) -- Nubeva Technologies (TSX-V: NBVA, OTC: NBVAF), a developer of B2B next-generation ransomware solutions, announces the immediate availability of a ...