Microsoft announced it has rolled out new capabilities in its Defender for Containers and Microsoft 365 Defender offerings for identifying and remediating the widespread vulnerabilities in Apache ...

Critical flaw in the H2 open-source Java SQL database are similar to the Log4J vulnerability, but do not pose a widespread threat.

New research released by security provider Cycognito finds that 70% of organizations are struggling to address Log4j.

But because Log4j is such a ubiquitous technology, the effect of this will be exponentially higher. To make matters worse, just finding Log4j in a company’s systems is incredibly complex.

On December 9, when the Apache Software Foundation disclosed a massive vulnerability in Log4j, its Java logging library, it triggered a cat-and-mouse game as IT professionals raced to secure their ...

Cybersecurity researchers warn that insecure instances of Lo4j are still out there to be exploited - and are easy for attackers to discover.

A Year Later, That Brutal Log4j Vulnerability Is Still Lurking Despite mitigation, one of the worst bugs in internet history is still prevalent—and being exploited. Photograph: zf L/Getty Images ...

In December 2021, a vulnerability in the open source Log4J logging service used by developers to monitor their Java applications first came to light, leaving enterprises scrambling to patch ...

Log4j flaw: Attackers are targeting Log4Shell vulnerabilities in VMware Horizon servers, says NHS NHS Digital issues an advisory urging organisations to take action to protect themselves.