PC Magazine

Critical Apache Log4j Exploit Demonstrated in Minecraft

We explore a far-reaching, real-world exploit with damaging implications in this edition of SecurityWatch. I review privacy tools like hardware security keys, password managers, private messaging apps ...
PC Magazine

Countless Servers Are Vulnerable to Apache Log4j Zero-Day Exploit

The vulnerability allows remote code execution on servers, including those operated by Apple, Twitter, Valve, Tencent, and other major service providers. I've been writing about tech, including ...
HotHardware

Hosting Your Own Minecraft Server? Patch Now And Protect From Log4j Ransomware Attacks

Are you tired of hearing about Log4shell yet? Well settle in, because a top-3-worst-security-exploit-ever doesn't vanish overnight. Microsoft updated its article about the flaw (which we mentioned on ...
PCGamesN

Minecraft is at risk from this vulnerability, but you can fix it

Minecraft is meant for kicking back, exploring Lush Caves, and coming up with stunning recreations of your favourite things, but it's pretty hard to relax knowing your server and gaming PC are at risk ...
Ars Technica

Zero-day in ubiquitous Log4j tool poses a grave threat to the Internet

Exploit code has been released for a serious code-execution vulnerability in Log4j, an open source logging utility that's used in countless apps, including those used by large enterprise organizations ...
Infosecurity-magazine.com

“Worst-Case Scenario” Log4j Exploits Travel the Globe

Security teams across the globe have been scrambling to address a dangerous new zero-day vulnerability in a popular Apache logging system currently being exploited in the wild. Dubbed "Log4Shell," the ...
CRN

Log4j Exploit Is ‘A Fukushima Moment’ For Cybersecurity: Tenable CTO

‘We’re discovering new apps every minute which use Log4j in one way or another. It affects not only the code you build, but also the third-party systems you have in place,’ writes Tenable CTO Renaud ...
The Verge

Log4j is patched, but the exploits are just getting started

Peter Membrey, chief architect of ExpressVPN, remembers vividly seeing the news of the Log4j vulnerability break online. “As soon as I saw how you could exploit it, it was horrifying,” says Membrey.
ZDNet

Log4j flaw: Attackers are making thousands of attempts to exploit this severe vulnerability

Cyber attackers are making over a hundred attempts to exploit a critical security vulnerability in Java logging library Apache Log4j every minute, security researchers have warned. The Log4j flaw ...
InfoWorld

What app developers need to do now to fight Log4j exploits

Why you may already be at risk, how to detect and mitigate the Log4j vulnerabilities now, and how to improve your code security in the future. Earlier this month, security researchers uncovered a ...
Forbes

Will The Log4j Exploit Move Leaders To Heed Cybersecurity Warnings?

WASHINGTON, DC - AUGUST 25: U.S. President Joe Biden speaks during a meeting about cybersecurity in the East Room of the White House on August 25, 2021 in Washington, DC. Members of the Biden cabinet, ...