Wired

A Year Later, That Brutal Log4J Vulnerability Is Still Lurking

A year ago, as Russia amassed troops at its border with Ukraine and the Covid-19 Omicron variant began to surge around the world, the Apache Software Foundation disclosed a vulnerability that set off ...
Fox 5 San Diego

Rezilion Offers MI-X, An Open Source Tool to Help Cybersecurity Community Determine if a Vulnerability is Exploitable - or Not

LAS VEGAS, Aug. 11, 2022 /PRNewswire/ -- Today Rezilion announced the availability of MI-X, a newly created open-source tool developed by Rezilion's vulnerability research team that made its debut ...
CNET

Log4j Vulnerability Could Be Here For a Decade, Cyber Safety Review Board Says

Andrew Blok covered home energy, with a focus on solar, and navigated the changing energy landscape to help people make smart energy decisions. He's a graduate of the Knight Center for Environmental ...
Nextgov

Log4j Vulnerability Prompts Lawmakers to Examine Agency Cyber Measures

Get the latest federal technology news delivered to your inbox. House Energy and Commerce Committee Leaders sent letters on Wednesday to several federal agencies requesting briefings to address ...
VentureBeat

Many orgs are still failing to address Log4j — here’s why

Want smarter insights in your inbox? Sign up for our weekly newsletters to get only what matters to enterprise AI, data, and security leaders. Subscribe Now Out of all the vulnerabilities discovered ...
Becker's Hospital Review

White House to host tech firms to address Log4j vulnerability

Software developers and tech firms including Google and Apple will meet with the Biden administration to discuss Log4j and how to make it more secure, according to a CNN report Jan. 13. The ...
ZDNet

Log4j flaw: Why it will still be causing problems a decade from now

Despite a well-coordinated effort to rally organizations to patch to the major open-source software flaw, cybersecurity officials don't see an end to the Log4Shell problems for at least a decade. That ...
Infosecurity-magazine.com

Lessons Learned: The Log4J Vulnerability 12 Months On

It was a shock to all in cybersecurity as Java and the Log4j open-source logging library are prevalent, commonly used across software applications and online services. The issue quickly came to the ...
Bleeping Computer

Over 30% of Log4J apps use a vulnerable version of the library

Roughly 38% of applications using the Apache Log4j library are using a version vulnerable to security issues, including Log4Shell, a critical vulnerability identified as CVE-2021-44228 that carries ...
SiliconANGLE

DHS review board declares Log4j an ‘endemic vulnerability’

The first report from the U.S. Department of Homeland Security’s Cyber Safety Review Board today declared Log4j an “endemic vulnerability.” The Department established the Cyber Safety Review Board in ...
Forbes

Four Ways To Prep For The Next Zero-Day Threat

For IT professionals of all stripes, the Grinch struck early last December with the revelation of a new zero-day vulnerability: Log4j. The ubiquity of the open-source service and the potential for ...