Bleeping Computer

Over 30% of Log4J apps use a vulnerable version of the library

Roughly 38% of applications using the Apache Log4j library are using a version vulnerable to security issues, including Log4Shell, a critical vulnerability identified as CVE-2021-44228 that carries ...
Infosecurity-magazine.com

RSAC: Log4J Still Among Top Exploited Vulnerabilities, Cato Finds

Three years after its discovery, the Log4J vulnerability (CVE-2021-44228) exploit remains one of the most attempted exploits observed by cloud security provider Cato Networks. Cato Cyber Threat ...
Forbes

Why Virtual Patching Is Key To Stopping Vulnerabilities Like Log4j

According to Verizon's 2024 Data Breach Investigations Report, cyberattacks and data breaches involving the exploitation of vulnerabilities have almost tripled compared to previous years. Our recent ...
WRAL

DHS secretary 'extraordinarily concerned' about latest software vulnerability that forced US Patent office to take its systems offline for 12 hours

Homeland Security Secretary Alejandro Mayorkas said Thursday that he's "extraordinarily concerned" about a newly revealed critical flaw in widely used software that is roiling the internet and caused ...
Becker's Hospital Review

HHS warns of healthcare cyberattack risk tied to Log4j vulnerability

The HHS Cybersecurity Program has issued a letter warning of a software vulnerability that puts healthcare providers across the country at risk of a cyberattack. The letter, sent Dec. 10, warns of a ...
Bleeping Computer

Lazarus hackers drop new RAT malware using 2-year-old Log4j bug

The notorious North Korean hacking group known as Lazarus continues to exploit CVE-2021-44228, aka "Log4Shell," this time to deploy three previously unseen malware families written in DLang. The new ...