Threat Post

Java Code Repository Riddled with Hidden Log4j Bugs; Here’s Where to Look

There are 17,000 unpatched Log4j packages in the Maven Central ecosystem, leaving massive supply-chain risk on the table from Log4Shell exploits. There’s an enormous amount of software vulnerable to ...
The Sun

Warning Log4j hackers using Java bypass leaving ‘whole NEW pool of potential victims’ at risk of malware attacks

A WARNING has been issued for those who use the Log4J logging library that a spreading botnet could open up "a whole new pool of potential victims." The warning was issued by Cybersecurity blog ...
CSOonline

Apache Log4j vulnerability actively exploited, impacting millions of Java-based apps

The vulnerability affects not only Java-based applications and services that use the library directly, but also many other popular Java components and development frameworks that rely on it. Attackers ...
koaa

Experts warn Log4j cybersecurity threat is one of the biggest we've ever faced

COLORADO SPRINGS — Both cybersecurity experts and major tech companies are warning it's one of the biggest cybersecurity threats we've ever faced and if small businesses don't make the fix it could ...
CBS News

Nightmare before Christmas: What to know about the Log4j vulnerability

A vulnerability living inside a Java-based software known as "Log4j" shook the internet this week. The list of potential victims encompasses nearly a third of all web servers in the world, according ...
Network World

Log4j flaw needs immediate remediation

After nearly two years of adopting major network and security changes wrought by COVID-19 and hybrid work, weary IT network and security teams didn’t need another big issue to take care of, but they ...