Log4j stories

SBOMs will be key to dealing with the next big vulnerability and incredibly useful in the fight to minimise the effects of smaller weaknesses.

Arctic Wolf, a global specialist in security operations, has published its annual Arctic Wolf Labs Threat Report, revealing a year of turbulence.

Ransomware threats remain at peak levels with no evidence of slowing down globally with new variants enabled by Ransomware-as-a-Service (RaaS).

The Secureworks Counter Threat Unit (CTU) has uncovered a subgroup of Iranian Cobalt Mirage using GitHub to store and deploy malware.

Software supply chain attacks are becoming the biggest concern in cyber security, with organisations globally at risk.

The data highlights legacy vulnerability remediation challenges, which are the root cause of the majority of data breaches.

IT teams are still grappling with the Log4Shell vulnerability, affecting Java enterprise applications and making holiday surprises likely.

Threat activity has spiked in Q2 2022, with malware events rising by 25%, botnets doubling, and exploit activity growing almost 150%, says Nuspire's report.

Companies are adopting cloud-native technologies faster than ever before. Unfortunately, with new technology comes new threats and challenges.

Attackers are using the Log4Shell vulnerability to deliver backdoors and profiling scripts to unpatched VMware Horizon servers.

As world governments issue warnings over the increasing cyber crime threat, the report's findings highlight common threats businesses should protect against.

Log4Shell attacks prove a continued and complex threat to APAC businesses, according to security company Barracuda.

The quantity of cyber attacks targeting the Log4Shell complex of vulnerabilities in Log4j still remains extremely high, according to Barracuda Networks.

Trend Micro discovers critical vulnerability in Samba file sharing protocol, advises urgent patching for affected organisations.

Last year's Apache Log4j vulnerability created a lot of chaos, so what can be done to protect companies from the security implications?.

A new remote code execution bug could be making businesses in Asia Pacific vulnerable to Log4Shell log injection attacks.

Cyberattacks increased by 50% in 2021, peaking in December due to Log4J exploits, according to new research from Check Point Software.

The Log4Shell zero day vulnerability has resulted in over 102 million exploitation attempts since its disclosure, says Imperva Research Labs.

Log4j exploit attempts persist globally, with evidence of scans and attacks, according to Sophos threat researcher Sean Gallagher.