Threat Post

Apache’s Fix for Log4Shell Can Lead to DoS Attacks

Not only is the jaw-dropping flaw in the Apache Log4j logging library ubiquitous; Apache’s blanket of a quickly baked patch for Log4Shell also has holes. As if finding one easily exploited and ...
BGR

Internet Is Scrambling To Fix Log4Shell, The Worst Hack In History

Massive data breaches have become so common that we've gotten numb to reports detailing another hack or 0-day exploit. That doesn't reduce the risk of such events happening, as the cat-and-mouse game ...
Graham Cluley

Log4Shell: The race is on to fix millions of systems and internet-connected devices

Everyone is talking about Log4Shell, a zero-day remote code execution exploit in versions of log4j, the popular open source Java logging library. In fact, I’ve received so many emails from PR agencies ...
IT News For Australia Business

Log4Shell patch incomplete, new fix issued

A new, urgent patch for the near-ubiquitous Java log4j logging library has been released, as the prior one thought to handle the critical Log4Shell vulnerabililty turned out to be incomplete.
scmp.com

World scrambles to fix Log4Shell bug, ‘biggest, most critical’ software flaw exploited by Minecraft users

A critical vulnerability in a widely used software tool – one quickly exploited in the online game Minecraft – is rapidly emerging as a major threat to organisations around the world. “The internet’s ...