PC Magazine

Hackers Exploit Log4Shell to Infect VMware Horizon Servers

I've been writing about tech, including everything from privacy and security to consumer electronics and startups, since 2011 for a variety of publications.
Threat Post

APT ‘Aquatic Panda’ Targets Universities with Log4Shell Exploit Tools

Researchers from CrowdStrike disrupted an attempt by the threat group to steal industrial intelligence and military secrets from an academic institution. Cyber criminals, under the moniker Aquatic ...
PC Magazine

CISA: Hackers Continue to Exploit Log4Shell in Unpatched VMware Servers

I've been writing about tech, including everything from privacy and security to consumer electronics and startups, since 2011 for a variety of publications.
GizChina

Log4Shell: This dangerous exploit can affect everything from Apple to Minecraft

For those unaware, Log4j is a popular Java-based logging package. Apache Software Foundation is the developer behind it. It's a CVE-2021-44228 patch that affects all versions of Log4j between version ...
Dark Reading

One Year After Log4Shell, Most Firms Are Still Exposed to Attack

The Log4j vulnerability continues to present a major threat to enterprise organizations one year after the Apache Software Foundation disclosed it last November — even though the number of publicly ...
Bleeping Computer

US govt: Iranian hackers breached federal agency using Log4Shell exploit

The FBI and CISA revealed in a joint advisory published today that an unnamed Iranian-backed threat group hacked a Federal Civilian Executive Branch (FCEB) organization to deploy XMRig cryptomining ...
Dark Reading

Log4Shell Exploit Threatens Enterprise Data Lakes, AI Poisoning

Enterprise data lakes are filling up as organizations increasingly embrace artificial intelligence (AI) and machine learning — but unfortunately, these are vulnerable to exploitation via the Java ...