The New York Times

What to Know About Prince Harry’s Case Against Daily Mail Publisher

Harry gave evidence on Wednesday in his case accusing Associated Newspapers of phone hacking and other unlawful activities. By Lizzie Dearden Reporting from London Prince Harry gave evidence in London ...
The Record

Google: More than 35,000 Java packages impacted by Log4j vulnerabilities

Google's open-source team said they scanned Maven Central, today's largest Java package repository, and found that 35,863 Java packages use vulnerable versions of the Apache Log4j library. James ...
Developer Tech

Log4j downloads shows supply chain wake-up call ignored

Ongoing vulnerable Log4j downloads suggest the supply chain crisis wasn’t the wake-up call it should have been. Back in December 2021, the “internet on fire” headlines weren’t hyperbole. Security ...
GitHub

java-mail-api

A Mass Mailer Java program created using Jakarta Mail API which enables the user to send bulk emails on individual basis or in one swoop. POC that sends emails to user on account creation event ...
Cloud Security Alliance

New Threat Detected: Inside Our Discovery of the Log4j Campaign and Its XMRig Malware

Written by Shilpesh Trivedi and Nisarga C M. The Uptycs Threat Research Team has uncovered a large-scale, ongoing operation within the Log4j campaign. Initially detected within our honeypot collection ...
Infosecurity-magazine.com

Two-Fifths of Log4j Apps Use Vulnerable Versions

Organizations are still exposed to critical vulnerabilities in Log4j, two years after a maximum severity bug was found in the popular utility, according to Veracode. The application security vendor ...
COBIT

Decoding Log4j Vulnerability Lessons Learned

Organizations that adopt technology for their business must carefully tread the path of managing the risk (e.g., financial, reputational, operational, legal) associated with vulnerabilities. However, ...
adtmag.com

Waratek Adds Log4J Scanner and API Security to its Java Security Platform

The Java security specialists at Dublin-based Waratek have released a new Log4J Vulnerability Scanner and added API security to their Java Security Platform, the company announced recently. The ...
Infosecurity-magazine.com

Lessons Learned: The Log4J Vulnerability 12 Months On

It was a shock to all in cybersecurity as Java and the Log4j open-source logging library are prevalent, commonly used across software applications and online services. The issue quickly came to the ...
Wired

A Year Later, That Brutal Log4J Vulnerability Is Still Lurking

A year ago, as Russia amassed troops at its border with Ukraine and the Covid-19 Omicron variant began to surge around the world, the Apache Software Foundation disclosed a vulnerability that set off ...
Microsoft

MERCURY leveraging Log4j 2 vulnerabilities in unpatched systems to target Israeli organizations

April 2023 update – Microsoft Threat Intelligence has shifted to a new threat actor naming taxonomy aligned around the theme of weather. MERCURY is now tracked as Mango Sandstorm. To learn about how ...