Threat actors can use a two-stage attack to establish a presence on affected networks
Multiple threat groups are currently leveraging Log4j bugs in their operations
'High severity' bug fixed is an uncontrolled recursion flaw
Researchers observe multiple attempts to deploy a Khonsari ransomware that hits Windows machines by making use of Log4Shell bug
New flaw is much less severe than the Log4jshell vulnerability, but admins are advised to update Log4j once again
Patch Log4j urgently admins urged, as memories of 2017 Equifax hack loom large
The latest features are about tightening up the functionality and cutting verbosity, with easier integrations coming down the line
Upgrade to latest Struts version immediately, warns Apache Struts Security Team
The project code was released on GitHub last month
Databases have become silos and this needs to change, says graph guru Marko Rodriguez