Get the latest federal technology news delivered to your inbox. House Energy and Commerce Committee Leaders sent letters on Wednesday to several federal agencies requesting briefings to address ...

This week the US Department of Homeland Security (DHS) released the Cyber Safety Review Board’s (CSRB) first report into the December 2021 Log4j event, where a number of vulnerabilities were reported ...

A joint security alert by CISA and the FBI has warned organizations that haven't applied much-needed Log4j security patches and mitigations to VMware Horizon server instances to assume their network ...

Roughly 38% of applications using the Apache Log4j library are using a version vulnerable to security issues, including Log4Shell, a critical vulnerability identified as CVE-2021-44228 that carries ...

The first report from the U.S. Department of Homeland Security’s Cyber Safety Review Board today declared Log4j an “endemic vulnerability.” The Department established the Cyber Safety Review Board in ...

Software developers and tech firms including Google and Apple will meet with the Biden administration to discuss Log4j and how to make it more secure, according to a CNN report Jan. 13. The ...

Despite a well-coordinated effort to rally organizations to patch to the major open-source software flaw, cybersecurity officials don't see an end to the Log4Shell problems for at least a decade. That ...

A data center: Network cables plugged into a server. — © Michael Bocchieri/AFP/Getty Images A data center: Network cables plugged into a server. — © Michael ...

A computer vulnerability discovered last year in a ubiquitous piece of software is an “endemic” problem that will pose security risks for potentially a decade or more, according to a new cybersecurity ...

While open-source software (OSS) in many cases saves developers from having to reinvent the wheel, we need to realize and safeguard against the inherent risk of OSS. The Cyber Safety Review Board ...

JP oversees the Research and Innovation teams that keep Onapsis on the cutting-edge of the business-critical application security market. In 2021, we commenced the year reeling from the aftermath of ...