JD Supra

FTC Releases Warning to Companies that Fail to Mitigate Log4j Vulnerability

Less than a month ago, a critical vulnerability was identified in the ubiquitous, open source Log4j tool prompting swift guidance from Cybersecurity and Infrastructure Security Agency (CISA) and other ...
ZDNet

After Log4j, White House fears the next big open source vulnerability

The White House is holding a meeting today with Apache, Google, Apple, Amazon, and other major tech organizations to discuss software security and open source tools. This comes in the wake of the ...
Yahoo Finance

What is Log4j? A crucial bit of software ‘used across the entire internet' that is now vulnerable

Yahoo Finance's Dan Howley breaks down what Log4j is all about and how it can impact internet security. -Well, if you have used Apple's cloud service or played Minecraft, chances are you've ...
ZDNet

Log4j flaw hunt shows how complicated the software supply chain really is

Open-source software is everywhere now, but the Log4j flaw that affects Java enterprise applications is a reminder of what can go wrong in the complicated modern software supply chain. The challenge ...
VentureBeat

Microsoft confirms new ransomware family deployed via Log4j vulnerability

Want smarter insights in your inbox? Sign up for our weekly newsletters to get only what matters to enterprise AI, data, and security leaders. Subscribe Now Microsoft has become the second security ...
Inc

What You Need to Know About Log4j, the Nasty Software Bug Posing a Major Threat to Small Businesses

If you haven’t taken a hard look at your servers and security systems recently, you’d be wise to do so ASAP. A member of Alibaba’s cloud security team discovered a dangerous vulnerability known as ...
Politico

Lesson from Log4j: Open-source software improvements need help from feds

The cyber community’s scramble to address major vulnerabilities in the widely used code library Log4j is just the latest wake-up call about the security risks of the open-source software ecosystem — ...