NH Business Review

How should you respond to the Log4j vulnerability?

The top U.S. cybersecurity officials have called the Log4j vulnerability one of the most serious security flaws in decades. The Common Vulnerability Scoring System (CVSS), which rates the severity of ...
Computer Weekly

Top three questions about the Log4j vulnerability

In December 2021, a vulnerability in the open source Log4J logging service used by developers to monitor their Java applications first came to light, leaving enterprises scrambling to patch affected ...
American Banker

Log4j security vulnerability is a double threat to banks

Like news an everyday appliance could be lethal to homeowners, the recent discovery of a security vulnerability in a widely used program, the Apache Software Foundation's Log4j, was unsettling to most ...
Homeland Security Today

PERSPECTIVE: Why the December 2021 Log4j Event Remains Top of Mind for Cyber Professionals

The Cyber Safety Review Board (CSRB), created in 2021 to review major cyber events, released a report last summer recapping the 2021 discovery of the Log4j vulnerability. Its disclosure triggered a ...
CRN

Log4j Vulnerability: How Two MSPs Reacted To The Massive Exploit

‘It’s one of the challenges with these kinds of vulnerabilities when they’re so critical,’ he says. ‘The community moves very rapidly to patch the open-source project but you often don’t get a perfect ...
Threat Post

The Log4j Vulnerability Puts Pressure on the Security World

It’s time to sound the alarm for Log4Shell. Saryu Nayyar, CEO at Gurucul, discusses what actions you should be taking. It’s not my intention to be alarmist about the Log4j vulnerability ...
Nextgov

CISA, FBI issue new guidance on addressing Log4j risks

The Cybersecurity and Infrastructure Security Agency and its partners are providing new ways to identify Log4j risks and mitigate possible exploitation. The Cybersecurity and Infrastructure Security ...
VentureBeat

How external attack surface management lets you see your org through an attacker’s eyes

Join our daily and weekly newsletters for the latest updates and exclusive content on industry-leading AI coverage. Learn More >>Don’t miss our special issue: How ...
ZDNet

Log4j flaw: This new threat is going to affect cybersecurity for a long time

If there ever was any doubt over the severity of the Log4j vulnerability, director of US cybersecurity and infrastructure agency CISA, Jen Easterly, immediately quashed those doubts when she described ...
PC Magazine

Microsoft: State-Sponsored Hackers Are Exploiting Log4j Vulnerability

The company also warns that cybercriminal groups are exploiting the flaw, likely to launch ransomware attacks. The critical Apache Log4j 2 vulnerability is paving the way for state-sponsored hackers ...
The Verge

Log4j is patched, but the exploits are just getting started

Peter Membrey, chief architect of ExpressVPN, remembers vividly seeing the news of the Log4j vulnerability break online. “As soon as I saw how you could exploit it, it was horrifying,” says Membrey.