ZDNet

After Log4j, White House fears the next big open source vulnerability

The White House is holding a meeting today with Apache, Google, Apple, Amazon, and other major tech organizations to discuss software security and open source tools. This comes in the wake of the ...
Dark Reading

Log4j Highlights Need for Better Handle on Software Dependencies

It's a new year and the cybersecurity community now faces the long-term consequences of yet another software supply chain security nightmare. After a year full of application security zero-day fallout ...
SDxCentral

SolarWinds to Log4j: More Risk Management Wake-Up Calls

Cybersecurity practitioners started this year with the struggle of addressing the SolarWinds supply chain attack, and now the Log4j vulnerability is another wake-up call for the need to set up ...
Dark Reading

Log4j and the Role of SBOMs in Reducing Software Security Risk

Recent high-profile cybersecurity incidents such as the SolarWinds attack and the Apache Log4j vulnerability have exposed the threats associated with the software supply chain. These can range from ...