adtmag.com

Waratek Adds Log4J Scanner and API Security to its Java Security Platform

The Java security specialists at Dublin-based Waratek have released a new Log4J Vulnerability Scanner and added API security to their Java Security Platform, the company announced recently. The ...
Diginomica

Is Log4j relevant to ERP managers? Yes, and we should prepare for the next security hack now

When the Log4j vulnerability news first came out, it seemed like a problem for overworked security experts. But as the patching crisis unfolded, many ERP managers spent their holidays on the job ...
NH Business Review

How should you respond to the Log4j vulnerability?

The top U.S. cybersecurity officials have called the Log4j vulnerability one of the most serious security flaws in decades. The Common Vulnerability Scoring System (CVSS), which rates the severity of ...
HHS

Log4j Flaw: Healthcare Sector Warned to Take Action

Healthcare sector organizations, like entities across other industries, are being warned by federal authorities and others to carefully assess how the recently identified severe remote code execution ...
Computer Weekly

Almost half of Log4j downloads still dangerously exposed

A month after the disclosure of CVE-2021-44228, aka Log4Shell, a critical vulnerability in the Apache Log4j Java package, up to 40% of new downloads are still at risk of compromise despite the ...
Dark Reading

One Year After Log4Shell, Most Firms Are Still Exposed to Attack

The Log4j vulnerability continues to present a major threat to enterprise organizations one year after the Apache Software Foundation disclosed it last November — even though the number of publicly ...
ZDNet

Log4j flaw: Thousands of applications are still vulnerable, warn security researchers

Months on from a critical zero-day vulnerability being disclosed in the widely-used Java logging library Apache Log4j, a significant number of applications and servers are still vulnerable to ...
Redmond Magazine

Microsoft Warns Orgs May Already Be Compromised by Log4Shell Attacks

Microsoft updated its Dec. 11 Log4j vulnerability tools guidance on Monday, offering advice on detecting and addressing possible "Log4Shell" exploits. The announcement offered some news on the ...
adtmag.com

Companies Facing FTC Legal Action Over Log4j Breaches

The U.S. Federal Trade Commission (FTC) intends to use its "full legal authority to pursue companies that fail to take reasonable steps to protect consumer data from exposure as a result of the Log4j ...
Bleeping Computer

Latest Apache Log4j news

Some threat actors exploiting the Apache Log4j vulnerability have switched from LDAP callback URLs to RMI or even used both in a single request for maximum chances of success. As expected, ...
Forbes

How Companies Can Prepare For The Next Log4j

Expertise from Forbes Councils members, operated under license. Opinions expressed are those of the author. Years from now, everyone in the software world will remember December 9, 2021, the day that ...