GIGAZINE

The involvement of the Chinese government is suspected as the number of attacks exploiting Log4j's zero-day vulnerability 'Log4Shell' is increasing rapidly.

Attacks using the zero-day vulnerability 'Log4Shell ' for remote code execution discovered in Java's log output library Apache Log4j are increasing rapidly, and among the attackers, 'the existence of ...
Bleeping Computer

Over 30% of Log4J apps use a vulnerable version of the library

Roughly 38% of applications using the Apache Log4j library are using a version vulnerable to security issues, including Log4Shell, a critical vulnerability identified as CVE-2021-44228 that carries ...
GIGAZINE

Log4j library zero-day vulnerability 'Log4Shell' is attacking vulnerable servers one after another, and you can do whatever you want, such as installing virtual currency miners ...

Log4Shell is a vulnerability found in the feature 'JNDI Lookup' that has been included since version 2.0 beta 9 of Log4j, which dynamically reads a class file from any LDAP server with a specific ...
TechRadar

Log4j could still be a major security worry for businesses everywhere

Even though it was discovered and patched two years ago, the Log4j vulnerability still poses a major threat to businesses everywhere, new research has claimed. A report by Veracode has argued ...