Fox News

‘Log4Shell’ exploits Apple, Twitter and Minecraft

Security experts around the world raced Friday to patch one of the worst computer vulnerabilities discovered in years, a critical flaw in open-source code widely used across industry and government in ...
BGR

Internet Is Scrambling To Fix Log4Shell, The Worst Hack In History

Massive data breaches have become so common that we've gotten numb to reports detailing another hack or 0-day exploit. That doesn't reduce the risk of such events happening, as the cat-and-mouse game ...
Mashable

It's already attacked 'Minecraft': The race is on to fix the biggest PC vulnerability in years

Minecraft has patched the exploit, but the threat for many others remains. Credit: Georg Wendt/picture alliance via Getty Images It's being called the "worst bug impacting the Internet in the last 5 ...
Graham Cluley

Log4Shell: The race is on to fix millions of systems and internet-connected devices

Everyone is talking about Log4Shell, a zero-day remote code execution exploit in versions of log4j, the popular open source Java logging library. In fact, I’ve received so many emails from PR agencies ...
scmp.com

World scrambles to fix Log4Shell bug, ‘biggest, most critical’ software flaw exploited by Minecraft users

A critical vulnerability in a widely used software tool – one quickly exploited in the online game Minecraft – is rapidly emerging as a major threat to organisations around the world. “The internet’s ...
Ars Technica

The Log4Shell 0-day, four days on: What is it, and how bad is it really?

Log4Shell is the name given to a critical zero-day vulnerability that surfaced on Thursday when it was exploited in the wild in remote-code compromises against Minecraft servers. The source of the ...
TechCrunch

Apple iCloud, Twitter and Minecraft vulnerable to ‘ubiquitous’ zero-day flaw

A number of popular services, including Apple iCloud, Twitter, Cloudflare, Minecraft and Steam, are reportedly vulnerable to a zero-day vulnerability affecting a popular Java logging library.
FedScoop

Federal agencies have until Dec. 24 to apply fixes for Log4Shell vulnerability

Federal agencies have 15 days to respond to the Log4Shell system security flaw following its designation as a critical vulnerability by the Cybersecurity and Infrastructure Security Agency. CISA on ...
The Denver Post

“The internet’s on fire” as techs race to fix critical software flaw

Getting your Trinity Audio player ready... BOSTON — A critical vulnerability in a widely used software tool — one quickly exploited in the online game Minecraft — is rapidly emerging as a major threat ...
Digital Journal

Op-Ed: Major risk – Log4shell bug threatens home computers, Minecraft, iCloud, and Steam

The log4j (CVE-2021-44228) bug is considered a major global vulnerability by security analysts. The bug relates to a Java logging function on servers. It allows ...
Threat Post

Millions of Java Apps Remain Vulnerable to Log4Shell

Four months after the critical flaw was discovered, attackers have a massive attack surface from which they can exploit the flaw and take over systems, researchers found. Four months after the ...
9to5Mac

iCloud and other services vulnerable to new ‘Log4Shell’ exploit impacting logging systems

A new exploit called “Log4Shell” has been giving security teams at large technology companies a headache. When exploited, the vulnerability lets hackers run malicious code on vulnerable servers, and ...