What's all this talk about Log4j?
An vulnerability was found in the popular tool Log4j and it's already being exploited
Published: 20 Dec 2021
In the last couple of weeks, you might have heard many talking about Log4j
Log4j is developed by Apache Software Foundation and is an open-source logging tool for java applications
Who's affected?
So many applications today are using Log4j, you might not even know it's there and that's why the impact this time is so highThere's already proof that people are taking advantages of the vulnerabilities in Log4j and why many companies are rushing to upgrade. But it takes time to roll out the fixes, for some institutes such as banks it can take months before a new fix is applied. As it needs to go through rigorous testing, before it can be applied in a live environment
Affected versions of Apache Log4j is 2.0 to 2.14.1
We sometimes publish affiliate links and these always needs to follow our editorial policy, for more information check out our affiliate link policy