AOL

With $1 Cyberattacks on the Rise, Durable Defenses Pay Off

Transforming a newly discovered software vulnerability into a cyberattack used to take months. Today—as the recent headlines ...
IEEE

Do Developers Depend on Deprecated Library Versions? A Mining Study of Log4j

Abstract: Log4j has become a widely adopted logging library for Java programs due to its long history and high reliability. Its widespread use is notable not only because of its maturity but also due ...
IEEE

The Log4j Incident: A Comprehensive Measurement Study of a Critical Vulnerability

Abstract: On December 10, 2021, Log4Shell was disclosed to the public and was quickly recognized as a most severe vulnerability. It exploits a bug in the wide-spread Log4j library that allows for ...

SAP Patchday: Critical vulnerabilities allow unauthorized login

SAP addresses 15 new security vulnerabilities in May. Two are considered critical and allow unauthorized login or SQL ...