News

ZDNet

Hackers used the Log4j flaw to gain access before moving across a company's network, say security researchers

A North Korean hacking and cyber-espionage operation breached the network of an engineering firm linked to military and energy organisations by exploiting a cybersecurity vulnerability in Log4j. First ...
SiliconANGLE

Major security bugs are a long-term threat: Here’s why and what’s next

The technology world is entering a new phase where code complexity and widespread use of global software tools have opened the door for a damaging security flaw that can last for years. The urgency to ...
Times Union

What is Log4j? A cybersecurity expert explains the latest internet vulnerability, how bad it is and what's at stake

Log4Shell, an internet vulnerability that affects millions of computers, involves an obscure but nearly ubiquitous piece of software, Log4j. The software is used to record all manner of activities ...
TechRepublic

Cyber Safety Review Board classifies Log4j as ‘endemic vulnerability’

The Cyber Safety Review Board (CSRB) recently labeled the Log4j security exploit as an ‘endemic vulnerability’ that will linger for years, according to a report released on Jul 11, 2022. The ...
Hosted on MSN

Apache Log4j: The Exploit that Almost Killed the Internet

Unveiling the Dark Side of Cyberworld: The Apache Log4j Crisis. Discover the shocking Log4Shell exploit that shook the internet. Learn vital lessons about cybersecurity and safeguarding our digital ...
Infosecurity-magazine.com

RSAC: Log4J Still Among Top Exploited Vulnerabilities, Cato Finds

Three years after its discovery, the Log4J vulnerability (CVE-2021-44228) exploit remains one of the most attempted exploits observed by cloud security provider Cato Networks. Cato Cyber Threat ...
PC Magazine

How a US Govt Board Helped the Open-Source Community Leap to Patch Log4j

How a US Govt Board Helped the Open-Source Community Leap to Patch Log4j 'I think what surprised a lot of people was how deep the fact-finding could go,' Cyber Safety Review Board Chair Robert Silvers ...
Hosted on MSN

Apache Log4j - The Exploit That Nearly Brought Down the Internet

A single flaw in Apache Log4j spiraled into one of the most dangerous exploits ever found. Experts warned it could have taken down the entire internet. White House responds to Trump-Putin documents ...
Wired

A Year Later, That Brutal Log4J Vulnerability Is Still Lurking

A year ago, as Russia amassed troops at its border with Ukraine and the Covid-19 Omicron variant began to surge around the world, the Apache Software Foundation disclosed a vulnerability that set off ...
VentureBeat

How external attack surface management lets you see your org through an attacker’s eyes

Join our daily and weekly newsletters for the latest updates and exclusive content on industry-leading AI coverage. Learn More >>Don’t miss our special issue: How ...
Bleeping Computer

Lazarus hackers drop new RAT malware using 2-year-old Log4j bug

The notorious North Korean hacking group known as Lazarus continues to exploit CVE-2021-44228, aka "Log4Shell," this time to deploy three previously unseen malware families written in DLang. The new ...