Times Union

What is Log4j? A cybersecurity expert explains the latest internet vulnerability, how bad it is and what's at stake

Log4Shell, an internet vulnerability that affects millions of computers, involves an obscure but nearly ubiquitous piece of software, Log4j. The software is used to record all manner of activities ...
Becker's Hospital Review

HHS warns of healthcare cyberattack risk tied to Log4j vulnerability

The HHS Cybersecurity Program has issued a letter warning of a software vulnerability that puts healthcare providers across the country at risk of a cyberattack. The letter, sent Dec. 10, warns of a ...
Forbes

Why Virtual Patching Is Key To Stopping Vulnerabilities Like Log4j

According to Verizon's 2024 Data Breach Investigations Report, cyberattacks and data breaches involving the exploitation of vulnerabilities have almost tripled compared to previous years. Our recent ...
Nextgov

Securing open source software is a team sport

Two years ago, the joint government-private sector response to the Log4j vulnerability that spawned 800,000 attacks worldwide led to the Enduring Security Framework for federal agencies adopting open ...
SDxCentral

Ransomware Gangs Exploit VMware Log4Shell Vulnerability

“Our investigation shows that successful intrusions in these campaigns led to the deployment of the Night Sky ransomware,” Microsoft noted. Identified earlier this month by Twitter group ...
TechCrunch

Software supply chain security remains a challenge for most enterprises

Log4j, maybe more than any other security issue in recent years, thrust software supply chain security into the limelight, with even the White House weighing in. But even though virtually every ...