CRN

12 Cybersecurity Vendors Susceptible To The Log4j Vulnerability

Vulnerable Log4j code can be found in products from prominent identity vendors like CyberArk, ForgeRock, Okta and Ping Identity, as well as SMB-focused security companies like Fortinet, SonicWall, and ...
Commercial Integrator

Log4j Scanning Tools Now Available for Free and Public Use

Just in time for the holidays, the Log4j vulnerabilities sent IT and security teams into a panic early last month. The Apache Foundation has since fixed the bugs and issued patches. So the onus is now ...
HotHardware

Serious Log4j Security Flaw Puts The Entire Internet At Risk, Even iCloud And Steam

You may have heard about a recent prank making the rounds in Minecraft. By sending a chat message starting with "${jndi:ldap://" users could make their friends ...
ZDNet

Log4j: Major IT vendors rush out fixes for this flaw and more ahead of Christmas

The holiday season is shaping up to be busy for those patching systems affected by the critical flaw in the Log4j Java application error logging library. Since ...
Threat Post

Zero Day in Ubiquitous Apache Log4j Tool Under Active Attack

The Log4Shell vulnerability critically threatens anybody using the popular open-source Apache Struts framework and could lead to a “Mini internet meltdown soonish.” An excruciating, easily exploited ...
TechSpot

Microsoft Defender gets new functions to fight Log4j

In brief: Microsoft has announced updates for cloud-based versions of its security software to fight the Log4j vulnerability. Log4j has mostly been patched but can still affect some servers that could ...
ZDNet

Log4j: Mirai botnet found targeting ZyXEL networking devices

An Akamai researcher has discovered an attempt to use Log4j vulnerabilities in ZyXEL networking devices to "infect and assist in the proliferation of malware used by the Mirai botnet." Larry ...