First detailed in December, the vulnerability (CVE-2021-44228) allows attackers to remotely execute code and gain access to systems that use Log4j, a widely used Java logging library.

Log4j Vulnerability Could Be Here For a Decade, Cyber Safety Review Board Says The widespread vulnerability is the first issue tackled by the new board.

Virtual patching is the action of protecting against vulnerability exploitation without necessarily patching the actual vulnerability.

The Cyber Safety Review Board (CSRB) recently labeled the Log4j security exploit as an ‘endemic vulnerability’ that will linger for years, according to a report released on Jul 11, 2022. The ...

New research released by security provider Cycognito finds that 70% of organizations are struggling to address Log4j.

Cybersecurity researchers warn that insecure instances of Lo4j are still out there to be exploited - and are easy for attackers to discover.

Hackers continue to exploit the Log4j vulnerability in vulnerable applications, as shown by the Iranian 'MuddyWater' threat actor who was found targeting Israeli organizations using the SysAid ...