TechCrunch

Software supply chain security is broader than SolarWinds and Log4J

SolarWinds and Log4j have made software supply chain security issues a topic of intense interest and scrutiny for businesses and governments alike. SolarWinds was a terrifying example of what can go ...
Bleeping Computer

Over 30% of Log4J apps use a vulnerable version of the library

Roughly 38% of applications using the Apache Log4j library are using a version vulnerable to security issues, including Log4Shell, a critical vulnerability identified as CVE-2021-44228 that carries ...
adtmag.com

Waratek Adds Log4J Scanner and API Security to its Java Security Platform

The Java security specialists at Dublin-based Waratek have released a new Log4J Vulnerability Scanner and added API security to their Java Security Platform, the company announced recently. The ...
InfoWorld

Open source security fought back in 2022

One year after the Log4j disaster, open source community efforts and new developer toolchains are addressing the challenges of software supply chain security. Early December marked the one-year ...
The Hacker News

From Log4j to IIS, China's Hackers Turn Legacy Bugs into Global Espionage Tools

China-linked hackers exploited multiple CVEs in April 2025 to target global entities with advanced persistence.
Forbes India

Safeguarding against the new frontier of cyberattacks in AI

Vulnerabilities in AI-assisted technology can snowball into national security risks; building safeguards and governance ...