Log4J

RSS

Naked Security

Apache

Apache Commons Text

CVE-2022-42889

Log4J

Log4shell

string interpolation

Dangerous hole in Apache Commons Text – like Log4Shell all over again

8 months on, US says Log4Shell will be around for “a decade or longer”

Naked Security

CSRB

DHS

Log4J

Log4shell

Security.txt

8 months on, US says Log4Shell will be around for “a decade or longer”

credit Andrew https://www.flickr.com/photos/polandeze/ CC 2.0

Threat Research

Crypto mining

Featured

Horizon

initial access broker

Log4J

Security Operations

VMware

Horde of miner bots and backdoors leveraged Log4J to attack VMware Horizon servers

Security Operations

Exploit

Featured

Log4J

Log4shell

Threat Research

vulnerability

Log4Shell: How the Attackers’ Faces Have Changed Over Time

Security Operations

Exploit

Featured

Log4J

Log4shell

MTR

Security Operations

Threat Research

vulnerability

Log4Shell: No Mass Abuse, But No Respite, What Happened?

Log4Shell-like security hole found in popular Java SQL database engine H2

Naked Security

CVE-2021-42392

Java

JNDI

Log4J

SQL

Log4Shell-like security hole found in popular Java SQL database engine H2

Naked Security

Apache

Apple

Instagram

Log4J

Log4shell

S3 Ep64: Log4Shell again, scammers keeping busy, and Apple Home bug [Podcast + Transcript]

FTC threatens “legal action” over unpatched Log4j and other vulns

Naked Security

Equifax

ftc

Log4J

Log4shell

patching

FTC threatens “legal action” over unpatched Log4j and other vulns

Log4Shell vulnerability Number Four: “Much ado about something”

Naked Security

Apache

CVE-2021-44228

CVE-2021-44832

Java

Log4J

Log4shell

Patch

vulnerability

Log4Shell vulnerability Number Four: “Much ado about something”