Log4j stories

Less than 40% of firms fully see their software supply chains amid rising security threats and new EU and US cybersecurity regulations.

Fewer than 40% of organisations have full visibility into their software supply chains, exposing risks amid rising cybersecurity concerns and regulation.

NetRise launches ZeroLens, an AI tool that detects undisclosed software weaknesses in compiled code, aiming to prevent cyberattacks before vulnerabilities emerge.

A survey by Azul reveals that 88% of enterprises are exploring alternatives to Oracle Java, citing rising costs and cloud expense concerns as key factors.

Qualys has launched a no-cost Tech Debt Report to help organisations identify and mitigate cyber risks from outdated technology.

Sonatype releases its SBOM Manager, a crucial tool to help organisations track and manage software components.

Check Point fortifies its CloudGuard WAF with a new API Discovery feature, aiming to enhance cloud security by identifying and mitigating API vulnerabilities.

Cato Networks exposes systemic cybersecurity gaps in inaugural threat report, revealing insecure protocols employed across WAN by all examined organisations.

New Relic's fourth annual State of the Java Ecosystem report reveals latest trends in Java development and adoption, highlighting significant growth in Java 21's uptake and shifts in preferred Java Developer Kits.

Cloudflare reveals a 25% surge in global internet traffic and heightened cybersecurity threats in its 2023 report.

Efforts to mitigate the Log4j vulnerability involve updating to patched versions of Log4j, but the process continues to be complex.

SBOMs will be key to dealing with the next big vulnerability and incredibly useful in the fight to minimise the effects of smaller weaknesses.

Arctic Wolf, a global specialist in security operations, has published its annual Arctic Wolf Labs Threat Report, revealing a year of turbulence.

Ransomware threats remain at peak levels with no evidence of slowing down globally with new variants enabled by Ransomware-as-a-Service (RaaS).

The Secureworks Counter Threat Unit (CTU) has uncovered a subgroup of Iranian Cobalt Mirage using GitHub to store and deploy malware.

Software supply chain attacks are becoming the biggest concern in cyber security, with organisations globally at risk.

The data highlights legacy vulnerability remediation challenges, which are the root cause of the majority of data breaches.

Today on 10 Minute IT Jams, we are joined by Erik Costlow, who is the Senior Director of Product Management, Azul.

IT teams are still grappling with the Log4Shell vulnerability, affecting Java enterprise applications and making holiday surprises likely.

Threat activity has spiked in Q2 2022, with malware events rising by 25%, botnets doubling, and exploit activity growing almost 150%, says Nuspire's report.