#log4j

[ follow ]
#log4shell #software-supply-chain #vulnerable-dependencies #release-management #sql-errors #investment-banking
Information security
fromIT Pro
1 day ago

A concerning number of Log4j downloads are still vulnerable four years on

Over 13% of Log4j downloads remain vulnerable to Log4Shell, and most vulnerable open-source components are still downloaded despite available fixed versions.
DevOps
fromTheregister
1 month ago

New boss changed code so it sent two billion unwanted emails

Removal of a rate-limited Log4j error-email plugin caused two billion SQL-error emails, overwhelming the bank's email system and hiding real error information.
Privacy professionals
fromDevOps.com
5 months ago

Still Running Vulnerable Log4j Instances? - DevOps.com

Log4j vulnerabilities remain a significant risk for organizations due to visibility and dependency issues.
Continuous monitoring and software composition analysis are essential for security.
[ Load more ]