Log4Shell Still Has Sting In The Tail
The December holiday plans of IT workers were thrown into disarray last year after the disclosure of a major bug in the widely-used Log4j …
Log4Shell
Log4Shell remains a big threat and a common cause for security breaches
The Log4Shell critical vulnerability that impacted millions of enterprise applications remains a common cause for security breaches a year …
Log4j’s Log4Shell Vulnerability: One Year Later, It’s Still Lurking
Many critical vulnerabilities get discovered every year that are of high urgency to address, but Log4Shell was unusual because it was so …
Researchers Uncover New Drokbk Malware that Uses GitHub as a Dead Drop Resolver
The subgroup of an Iranian nation-state group known as Nemesis Kitten has been attributed as behind a previously undocumented custom …
Log4Shell Lives!
It has been about a year since the security hole at the heart of the open source Java logging library Apache Log4j was revealed. The …
Week in review: Log4Shell lingers, NIS2 directive adopted, LastPass breached (again)
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: The top 200 most common passwords in …
One Year After Log4Shell, Most Firms Are Still Exposed to Attack
Though there have been fewer than expected publicly reported attacks involving the vulnerability, nearly three-quarters of organizations …
A year later, Log4Shell still lingers
72% of organizations remain vulnerable to the Log4Shell vulnerability as of October 1, 2022, Tenable‘s latest telemetry study has …
Iranian Hackers Compromised a U.S. Federal Agency’s Network Using Log4Shell Exploit
Iranian government-sponsored threat actors have been blamed for compromising a U.S. federal agency by taking advantage of the Log4Shell …
Hackers Started Exploiting Critical “Text4Shell” Apache Commons Text Vulnerability
WordPress security company Wordfence on Thursday said it started detecting exploitation attempts targeting the newly disclosed flaw in …
Apache Commons Text Flaw Not a Repeat of Log4Shell
A freshly fixed flaw (CVE-2022-42889) in the Apache Commons Text library has been getting attention from security researchers these last …
Presentation: Securing Java Applications in the Age of Log4Shell
Transcript Maple: My name is Simon …
Apache Commons Text flaw is not a repeat of Log4Shell (CVE-2022-42889)
A freshly fixed vulnerability (CVE-2022-42889) in the Apache Commons Text library has been getting attention from security researchers …
Dangerous hole in Apache Commons Text – like Log4Shell all over again
Java programmers love string interpolation features. If you’re not a coder, you’re probably confused by the word “interpolation” …