A group of developers and maintainers scrambled to secure the Log4j vulnerability over the weekend, but there is still a lot of work to do to clean up the mess.

Contrast Security has found that 58% of Java applications have vulnerable versions present, but only 37% are actually using Log4j.

A new zero-day vulnerability in the popular Java logging framework Log4j has been discovered which has the potential to affect Minecraft, iCloud, Steam and numerous other software products that ...

Months on from a critical zero-day vulnerability being disclosed in the widely-used Java logging library Apache Log4j, a significant number of applications and servers are still vulnerable to ...

A vulnerability Log4j bug is causing Minecraft users to be exposed to potentially dangerous threats. Learn more about the issue.

Attackers are actively exploiting a critical vulnerability in Apache Log4j, a logging library that’s used in potentially millions of Java-based applications, including web-based ones.

Open-source software is everywhere now, but the Log4j flaw that affects Java enterprise applications is a reminder of what can go wrong in the complicated modern software supply chain.

Question: How do I find servers in my organization that have the vulnerable Log4j component? For enterprise IT and security teams tasked with updating Java applications containing the vulnerable ...

What is Log4j? Software developers use the Log4j framework to record user activity and the behavior of applications for subsequent review.

Four months after the discovery of the zero-day Log4Shell critical flaw, millions of Java applications still remain vulnerable to compromise, researchers have found.