Security news that informs and inspires

Archive

19 results for tag Log4j:

After Log4j, Efforts to ‘Uplift’ Open Source Ecosystem Continue

At Black Hat USA this week, Cyber Safety Review Board members tasked with looking at key lessons learned from Log4j talked about continued security issues facing the open source community.

Log4j

Cyber Safety Review Board: Exploitation of ‘Endemic’ Log4j Flaw Will Evolve

The Cyber Safety Review Board’s report on the Log4j flaw pointed to an open-source software ecosystem riddled with security challenges.

Log4j

APT Groups Still Exploiting Log4Shell in VMware Products

APT teams are still exploiting the Log4Shell flaw in VMware Horizon and Unified Access Gateway, six months after the initial disclosure.

Log4j, Cisa

Log4Shell Attacks by Chinese APT Reveal Windows Rootkit

After investigating the Deep Panda APT's recent exploitation attempts of the Log4j flaw, researchers uncovered a new kernel rootkit.

Apt, Rootkit, Log4j

APT41 Compromised Six U.S. State Government Networks

The prolific APT group compromised state government networks by exploiting the Log4j flaw and a vulnerability in an animal health emergency reporting system.

Log4j, China, Government Agencies, State Government