The Next Web

The Log4j bug exposes a bigger issue: Open-source funding (Updated)

Update (December 14 ,2021): We’ve updated this article with information about the new Log4j version release, along with new exploit vectors, and risks related to all Java versions. While you were ...
Forbes

Will The Log4j Exploit Move Leaders To Heed Cybersecurity Warnings?

WASHINGTON, DC - AUGUST 25: U.S. President Joe Biden speaks during a meeting about cybersecurity in the East Room of the White House on August 25, 2021 in Washington, DC. Members of the Biden cabinet, ...
Dark Reading

How to Prevent the Next Log4j-Style Zero-Day Vulnerability

Software testing is notoriously hard. Search Google for CVEs caused by basic CRLF (newline character) issues and you'll see thousands of entries. Humanity has put a man on the moon, but we still haven ...
CSOonline

Detect and Remediate the Exploitation of the Log4j Vulnerability

Most likely bad actors already knew about this prior to December 9 th as it’s been reported that the vulnerability was exposed much earlier in Minecraft chat forums. The vulnerability exposes how the ...
SDxCentral

SolarWinds to Log4j: More Risk Management Wake-Up Calls

Cybersecurity practitioners started this year with the struggle of addressing the SolarWinds supply chain attack, and now the Log4j vulnerability is another wake-up call for the need to set up ...
Business Wire

JFrog Releases OSS Tools to Identify Log4j Utilization in Both Binaries & Source Code

SUNNYVALE, Calif.--(BUSINESS WIRE)--JFrog Ltd. (“JFrog”) (NASDAQ: FROG), the Liquid Software company and creators of the JFrog DevOps Platform, today released free scanning tools specifically designed ...