PC Magazine

Critical Apache Log4j Exploit Demonstrated in Minecraft

We explore a far-reaching, real-world exploit with damaging implications in this edition of SecurityWatch. I review privacy tools like hardware security keys, password managers, private messaging apps ...
PC Magazine

Countless Servers Are Vulnerable to Apache Log4j Zero-Day Exploit

The vulnerability allows remote code execution on servers, including those operated by Apple, Twitter, Valve, Tencent, and other major service providers. I've been writing about tech, including ...
PCGamesN

Minecraft is at risk from this vulnerability, but you can fix it

Minecraft is meant for kicking back, exploring Lush Caves, and coming up with stunning recreations of your favourite things, but it's pretty hard to relax knowing your server and gaming PC are at risk ...
HotHardware

Hosting Your Own Minecraft Server? Patch Now And Protect From Log4j Ransomware Attacks

Are you tired of hearing about Log4shell yet? Well settle in, because a top-3-worst-security-exploit-ever doesn't vanish overnight. Microsoft updated its article about the flaw (which we mentioned on ...
Ars Technica

Zero-day in ubiquitous Log4j tool poses a grave threat to the Internet

Exploit code has been released for a serious code-execution vulnerability in Log4j, an open source logging utility that's used in countless apps, including those used by large enterprise organizations ...
Yahoo

What is Log4j? A cybersecurity expert explains the latest internet vulnerability, how bad it is and what's at stake

Log4Shell, an internet vulnerability that affects millions of computers, involves an obscure but nearly ubiquitous piece of software, Log4j. The software is used to record all manner of activities ...
HotHardware

Homeland Security Expands Its Hack DHS Bug Bounty As Log4j Threat Intensifies

If you're reading this, you probably don't need to be told that a "bug bounty" is a cash prize paid to security researchers that find a software exploit. Non-USians might need to be told that "DHS" ...
ZDNet

Log4j flaw: Attackers are making thousands of attempts to exploit this severe vulnerability

Cyber attackers are making over a hundred attempts to exploit a critical security vulnerability in Java logging library Apache Log4j every minute, security researchers have warned. The Log4j flaw ...
techtimes

Minecraft Vulnerability Spotted | How to Fix Log4j Bug

A newly discovered vulnerability is now posing a huge threat towards Java versions of Minecraft, making it possible to execute malicious code on servers as well as end-user devices that are playing ...
The Verge

Log4j is patched, but the exploits are just getting started

Peter Membrey, chief architect of ExpressVPN, remembers vividly seeing the news of the Log4j vulnerability break online. “As soon as I saw how you could exploit it, it was horrifying,” says Membrey.
InfoWorld

What app developers need to do now to fight Log4j exploits

Why you may already be at risk, how to detect and mitigate the Log4j vulnerabilities now, and how to improve your code security in the future. Earlier this month, security researchers uncovered a ...
Forbes

Will The Log4j Exploit Move Leaders To Heed Cybersecurity Warnings?

WASHINGTON, DC - AUGUST 25: U.S. President Joe Biden speaks during a meeting about cybersecurity in the East Room of the White House on August 25, 2021 in Washington, DC. Members of the Biden cabinet, ...