Topic > Log4j vulnerability

Why developer-first security is needed from the start, from DevSecOps pioneer Snyk

Taryn Plumb December 13, 2022 4:31 PM

Don’t leave open source open to vulnerabilities

Taryn Plumb August 18, 2022 7:01 AM

Community

Cybersecurity and the Pareto Principle: The future of zero-day preparedness

Jeremy Colvin, Uptycs May 1, 2022 11:10 AM

Don’t ignore Spring4Shell. But there’s still no sign it’s widespread

Kyle Alspach March 31, 2022 11:34 AM

Spring Core vulnerability doesn’t seem to be Log4Shell all over again

Kyle Alspach March 30, 2022 3:27 PM

GreyNoise launches free tool to protect against ‘scary’ vulnerabilities like Log4j

Kyle Alspach March 14, 2022 9:00 AM

Report: Cybersecurity teams need nearly 100 days to develop threat defenses

VB Staff March 11, 2022 2:20 PM

Mandiant reminds us: Don’t forget about Log4j

Kyle Alspach March 8, 2022 4:46 PM

Report: 50% of all web applications were vulnerable to attacks in 2021

VB Staff February 21, 2022 2:10 PM

The challenges of community- vs vendor-led open source software

Paul Sawers February 14, 2022 7:41 AM

Lacework expands capabilities for fixing Log4j flaw

Kyle Alspach February 2, 2022 6:00 AM

Major attacks using Log4j vulnerability ‘lower than expected’

Kyle Alspach January 24, 2022 1:11 PM

Community

The Log4Shell vulnerability: A postmortem

Ariel Assaraf, Coralogix January 22, 2022 7:40 AM

Accidental exposure of sensitive data has been surging, Bugcrowd finds

Kyle Alspach January 18, 2022 6:00 AM

Device42 aims to identify Log4j vulnerabilities

Corinna Makris January 17, 2022 1:30 PM

Guest

Why your organization needs a software bill of materials

Bren Briggs, Hypergiant January 8, 2022 10:40 AM

Patching Log4j to version 2.17.1 can probably wait

Kyle Alspach December 29, 2021 12:31 PM

China-based group used Log4j flaw in attack, CrowdStrike says

Kyle Alspach December 29, 2021 9:00 AM

Microsoft investigating Defender issue with Log4j scanner

Kyle Alspach December 29, 2021 7:34 AM

Open source security leader Brian Behlendorf discusses the impact of Log4j

Peter Wayner December 28, 2021 9:40 AM

Microsoft launches new Defender capabilities for fixing Log4j

Kyle Alspach December 28, 2021 9:09 AM

2021: A year in open source

Paul Sawers December 27, 2021 2:20 PM

Log4j flaw gets big attention from ‘ruthless’ ransomware gang

Kyle Alspach December 22, 2021 11:04 AM

Second ransomware family exploiting Log4j spotted in U.S., Europe

Kyle Alspach December 21, 2021 3:56 PM

Log4j vulnerabilities, malware strains multiply; major attack disclosed

Kyle Alspach December 20, 2021 5:20 PM

Log4j vulnerability opened the door to the ransomware operators

Kyle Alspach December 17, 2021 5:23 PM

Community

How to detect whether you have the Log4j2 vulnerability

Ariel Assaraf, Coralogix December 17, 2021 1:20 PM

As Log4j sent defenders scrambling, this startup made its threat data free

Kyle Alspach December 17, 2021 10:20 AM

With Log4j vulnerability, the full impact has yet to come

Kyle Alspach December 16, 2021 5:26 PM

Microsoft confirms new ransomware family deployed via Log4j vulnerability

Kyle Alspach December 15, 2021 8:46 PM

Microsoft: Ransomware ‘access brokers’ now exploiting Log4j vulnerability

Kyle Alspach December 15, 2021 8:31 AM

Log4j exploits attempted on 44% of corporate networks; ransomware payloads spotted

Kyle Alspach December 14, 2021 2:10 PM

‘Less obvious’ uses of Log4j pose a major risk

Kyle Alspach December 13, 2021 4:39 PM

Log4j exploits suggest attackers gearing up for ransomware

Kyle Alspach December 13, 2021 10:23 AM

Microsoft: Log4j exploits extend past crypto mining to outright theft

Kyle Alspach December 12, 2021 2:33 PM

‘Vaccine’ against Log4Shell vulnerability has potential — and limitations

Kyle Alspach December 11, 2021 5:50 PM

The Log4j vulnerability is bad. Here’s the good news

Kyle Alspach December 10, 2021 2:56 PM