Bleeping Computer

CISA: Federal agencies required to patch Log4j by December 24th

The Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to patch systems against the critical Log4Shell vulnerability and released mitigation guidance in response to ...
Bleeping Computer

US orders federal govt agencies to patch critical Log4j bug

US Federal Civilian Executive Branch agencies have been ordered to patch the critical and actively exploited Log4Shell security vulnerability in the Apache Log4j library within the next six days. The ...
HHS

Log4Shell Update: VMware Horizon Targeted

A representative diagram of the Log4Shell attack on VMware Horizon (Source: U.K. National Health Service) Attackers have been actively targeting Log4j, or Log4shell, vulnerabilities in the servers of ...
ZDNet

Log4j flaw: Why it will still be causing problems a decade from now

Despite a well-coordinated effort to rally organizations to patch to the major open-source software flaw, cybersecurity officials don't see an end to the Log4Shell problems for at least a decade. That ...
SiliconRepublic

Log4Shell flaw: Government asks organisations to check server security

A cybersecurity flaw in Java-based utility Log4j, used by many major tech companies, could give hackers access to computer systems. The National Cyber Security Centre (NCSC) has issued a warning to ...