Bleeping Computer

Over 30% of Log4J apps use a vulnerable version of the library

Roughly 38% of applications using the Apache Log4j library are using a version vulnerable to security issues, including Log4Shell, a critical vulnerability identified as CVE-2021-44228 that carries ...
CSOonline

Lazarus APT attack campaign shows Log4Shell exploitation remains popular

The ongoing attack targets manufacturing, agricultural, and physical security organizations that have yet to fix vulnerabilities in the Log4j code. Despite receiving a patch two years ago, the ...