SiliconRepublic

Log4j is an ‘endemic vulnerability’ that will remain for years, report says

The report said organisations are spending ‘significant resources’ trying to address the Log4j flaw, resulting in high costs and delays to ‘mission-critical work’. Despite ongoing efforts by ...
Bleeping Computer

Over 30% of Log4J apps use a vulnerable version of the library

Roughly 38% of applications using the Apache Log4j library are using a version vulnerable to security issues, including Log4Shell, a critical vulnerability identified as CVE-2021-44228 that carries ...