Log4j / Log4Shell

Log4Shell is a JNDI injection exploit for vulnerability CVE-2021-44228 affecting Apache Log4j 2 library. It has vast implications for the Java-based applications powering countless Internet services.

Log4j New Year Wrap-Up

One month into the Log4j vulnerability, we take a look at the 3 CVEs and their fixes, known exploits being observed in the wild, and a way…

January 7, 2022 01:15 GMT

Apache Releases Log4j 2.16.0 to Patch Lingering DoS Vulnerability

Amid the focus on Log4j while patching CVE-2021-44228, a JNDI injection RCE vulnerability, Apache has released 2.16.0 which disables JNDI by…

December 14, 2021 19:39 GMT

Log4j/Log4Shell Updates and Recommended Guidance

Updates and recommended guidance for identifying vulnerable servers and mitigating exploit attempts.

December 13, 2021 20:18 GMT

Apache Log4j Zero-Day Exposes Java Applications to RCE

A high-severity zero-day has been uncovered in Apache Log4j which could allow a log injection RCE exploit.

December 10, 2021 18:45 GMT

Hand-Picked Top-Read Stories

Weekly Top 10 – 04.22.2024- MITRE breach, Hackers Exploit Fortinet Flaw, UNDP investigates ransomware attack, and More.

Weekly Top 10 – 04.15.2024- Google Bug Bounties, Medusa Ransomware Returns, LG Smart TVs Vulnerable, and More.

Weekly Top 10 – 04.9.2024- XZ Utils Backdoor, Vultur Banking Trojan, New Chrome Features, and More.

Trending Tags

Log4j / Log4Shell

Log4j New Year Wrap-Up

Apache Releases Log4j 2.16.0 to Patch Lingering DoS Vulnerability

Log4j/Log4Shell Updates and Recommended Guidance

Apache Log4j Zero-Day Exposes Java Applications to RCE

The New Standard of

Cybersecurity
Education

Innovate Cybersecurity Summit

Threat Advisories

Weekly Top 10 – 04.22.2024- MITRE breach, Hackers Exploit Fortinet Flaw, UNDP investigates ransomware attack, and More.

Weekly Top 10 – 04.15.2024- Google Bug Bounties, Medusa Ransomware Returns, LG Smart TVs Vulnerable, and More.

Weekly Top 10 – 04.9.2024- XZ Utils Backdoor, Vultur Banking Trojan, New Chrome Features, and More.

Weekly Top 10 – 04.2.2024- SharePoint and AMD Vulnerabilities, Password Spraying VPN Attacks, Tycoon 2FA, and More.

Weekly Top 10 – 03.25.2024- AI Enhanced Cyber Attacks Rising, Microsoft Warns Taxpayers of Tax Return Phishing Scams, “Fluffy Wolf” Stealer Malware Targets Corporate Environments, and More.

Education

Protecting Microsoft Teams From Data Exfiltration – A Tactical DLP Rule

Anatomy of a Data Breach

OpenAI Cybersecurity Research

Breach Report: Healthcare

Analysis of GalComm Chrome Extension Malware