Fast Company

Log4j vulnerability explained: The software flaw that has the tech world racing for a fix

In late November, a cloud-security researcher for Chinese tech giant Alibaba discovered a flaw in a popular open-source coding framework called Log4j. The employee quickly notified Log4j’s parent ...
FedScoop

DHS board: No one used software inventories to find vulnerable Log4j deployments

WASHINGTON, DC - NOVEMBER 16: Department of Homeland Security Secretary Alejandro Mayorkas testifies during a Senate Judiciary Committee hearing in Washington, DC. (Photo by Drew Angerer/Getty Images) ...
VentureBeat

‘Less obvious’ uses of Log4j pose a major risk

Join our daily and weekly newsletters for the latest updates and exclusive content on industry-leading AI coverage. Learn More Log4Shell, the Apache Log4j vulnerability that has sent every security ...
The National Law Review

Patch Up – Log4j and How to Avoid a Cybercrime Christmas

We collaborate with the world's leading lawyers to deliver news tailored for you. Sign Up for any (or all) of our 25+ Newsletters. Some states have laws and ethical rules regarding solicitation and ...
VentureBeat

Device42 aims to identify Log4j vulnerabilities

Join our daily and weekly newsletters for the latest updates and exclusive content on industry-leading AI coverage. Learn More Jen Easterly, director of the Cybersecurity and Infrastructure Security ...
ZDNet

Log4j: How hackers are using the flaw to deliver this new 'modular' backdoor

Iran-backed hacking group Phosphorous or APT35 is using the Log4j vulnerability to distribute a new modular PowerShell toolkit, according to security firm Check Point. APT35 is one of several ...