GitHub

azure-ashish-main-docs /articles /sentinel

In this tutorial, you'll learn how to set up a Microsoft Sentinel analytics rule from a template to search for exploits of the Apache Log4j vulnerability across your environment. The rule will frame ...
GitHub

jqassistant-tutorials/log4j-artifact-repository-analysis

As a pre-condition the repositories must provide an index. This can be activated in the administration of the repository manager. mvn verify -Drepo.url=http://host ...
Threat Post

Java Code Repository Riddled with Hidden Log4j Bugs; Here’s Where to Look

There are 17,000 unpatched Log4j packages in the Maven Central ecosystem, leaving massive supply-chain risk on the table from Log4Shell exploits. There’s an enormous amount of software vulnerable to ...
ZDNet

Log4J: Microsoft discovers attackers targeting undisclosed SolarWinds vulnerability

Microsoft researchers have discovered a previously undisclosed vulnerability in the SolarWinds Serv-U software while monitoring threats related to Log4J vulnerabilities. Jonathan Bar Or explained on ...
ZDNet

Log4j flaw hunt shows how complicated the software supply chain really is

Open-source software is everywhere now, but the Log4j flaw that affects Java enterprise applications is a reminder of what can go wrong in the complicated modern software supply chain. The challenge ...
CNN

The Log4j security flaw could impact the entire internet. Here’s what you should know

A critical flaw in widely used software has cybersecurity experts raising alarms and big companies racing to fix the issue. The vulnerability, which was reported late last week, is in Java-based ...
Digital Journal

Small businesses are at increased risk from Log4j-based malware

New data suggests that 31 percent of confirmed malware infections used Log4j as the initial infection vector (as revealed in the Cloud Threat Report). This third iteration of the report analyses four ...