Sens. Gary Peters, D-Mich., and Rob Portman, R-Ohio, have proposed a bill with the intent to strengthen the U.S. government’s security defenses against open source software vulnerabilities. The introduction of the Securing
MoreThe Department of Homeland Security has issued the Cyber Safety Review Board’s inaugural report on the Log4j vulnerability discovered in December 2021. The CSRB worked with nearly 80 organizations, software developers and
More by Jane Edwards
A group of hackers with links to the Chinese government compromised the computer networks in six U.S. state governments as part of a campaign that included the exploitation of internet-facing web applications
More by Jane Edwards
Log4j is popular Java-based software intended to assemble a log to troubleshoot problems or record data. In November 2021, users noticed that there was an error in the program, which impacted almost a
MoreJen Easterly, director of the Cybersecurity and Infrastructure Security Agency, said that although there has been no major cyberattacks linked to a flaw in the Log4j software code so far, the vulnerability
More by Jane Edwards
The Federal Trade Commission urges companies to address the cyber vulnerabilities associated with the Log4j logging utility software, which records activities in consumer-facing systems. FTC said Tuesday that Log4j vulnerabilities, when exploited,
MoreJen Easterly, director of the Cybersecurity and Infrastructure Security Agency, said CISA has added a critical vulnerability involving the log4j software library to its “catalog of known exploited vulnerabilities” to incite federal
More by Jane Edwards