Microsoft announced security updates for the Log4j vulnerability in its Defender for Containers and Microsoft 365 Defender offerings.

Critical flaw in the H2 open-source Java SQL database are similar to the Log4J vulnerability, but do not pose a widespread threat.

New research released by security provider Cycognito finds that 70% of organizations are struggling to address Log4j.

Cybersecurity researchers warn that insecure instances of Lo4j are still out there to be exploited - and are easy for attackers to discover.

On December 9, when the Apache Software Foundation disclosed a massive vulnerability in Log4j, its Java logging library, it triggered a cat-and-mouse game as IT professionals raced to secure their ...

Vulnerability disclosures often come in bunches, and unvetted patch updates can create their own problems. Here's how to assess and prioritize both.

A single flaw in Apache Log4j spiraled into one of the most dangerous exploits ever found. Experts warned it could have taken ...

A Year Later, That Brutal Log4j Vulnerability Is Still Lurking Despite mitigation, one of the worst bugs in internet history is still prevalent—and being exploited. Photograph: zf L/Getty Images ...

Log4j flaw: Attackers are targeting Log4Shell vulnerabilities in VMware Horizon servers, says NHS NHS Digital issues an advisory urging organisations to take action to protect themselves.

In December 2021, a vulnerability in the open source Log4J logging service used by developers to monitor their Java applications first came to light, leaving enterprises scrambling to patch ...