If you're not certain whether your Java project is free from Log4j vulnerabilities, you should try this easy-to-use scanning tool immediately.

A bug in the ubiquitous Log4j library can allow an attacker to execute arbitrary code on any system that uses Log4j to write logs. Does yours?

Iran-backed hacking group Phosphorous or APT35 is using the Log4j vulnerability to distribute a new modular PowerShell toolkit, according to security firm Check Point. APT35 is one of several ...

Open-source software is everywhere now, but the Log4j flaw that affects Java enterprise applications is a reminder of what can go wrong in the complicated modern software supply chain.

Roughly 38% of applications using the Apache Log4j library are using a version vulnerable to security issues, including Log4Shell, a critical vulnerability identified as CVE-2021-44228 that ...

GOOGLE is warning users over a vulnerability that can be exploited by hackers. Apache Log4j 2 utility is an open-source Apache framework that is used for logging requests. A vulnerability was… ...

A group of developers and maintainers scrambled to secure the Log4j vulnerability over the weekend, but there is still a lot of work to do to clean up the mess.

The Apache Software Foundation (ASF) has rolled out another update - version 2.17.0 - for its Java-based open-source logging library Log4j to address a third security vulnerability discovered in ...

Attackers are attempting to scan the internet for vulnerable Log4j with 100 attempts to exploit the vulnerability every minute, according to researchers at Check Point.

The “Log4j” issue is a coding bug borne out of the open-source software logging system known as “Log4j,” which is among the most widely-used and popular in the world.