News

TechRepublic3y
Check for Log4j vulnerabilities with this simple-to-use script
If you're not certain whether your Java project is free from Log4j vulnerabilities, you should try this easy-to-use scanning tool immediately.
The Hacker News3y
New Local Attack Vector Expands the Attack Surface of Log4j Vulnerability - The Hacker News
The development also coincides with an analysis from Google's Open Source Insights Team, which found that roughly 35,863 Java packages — accounting for over 8% of the Maven Central repository — use ...
Wired3y
A Log4J Vulnerability Has Set the Internet 'On Fire' | WIRED
A vulnerability in a widely used logging library has become a full-blown security meltdown, affecting digital systems across the internet. Hackers are already attempting to exploit it, but even as ...
Dark Reading3y
Log4j Attack Surface Remains Massive - Dark Reading
Log4j Attack Surface Remains Massive Log4j Attack Surface Remains Massive. Four months after the Log4Shell vulnerability was disclosed, most affected open source components remain unpatched, and ...