Security

The Apache Log4j Vulnerability Also known as Log4Shell, the Apache Log4j vulnerability was THE cybersecurity news story of December and one of the most significant of 2021 and likely 2022. A flaw in the widely used Java logging library, it was first disclosed on December 9. The vulnerability was first discovered in Minecraft and allows […]

Microsoft rolled out a not overly heavy 55 fixes in November’s Patch Tuesday, but it includes several critical issues and six zero-days.

October was a scary month, not just because of Halloween, but because of the number of patches from software vendors to avoid nasty tricks.

Microsoft’s October Patch Tuesday offers fixes for more than 70 vulnerabilities, including four zero-days and updates for Windows 11.

September patches from software vendors other than Microsoft were numerous, reflecting a new reality where remote workers are targets of hackers.

Summer is ending, but the vulnerabilities continue hot and heavy. The Microsoft September patch update has fixes for scores of flaws, several critical.

August was a light month for patches from non-Microsoft vendors including, Adobe, Linux, and Google, but several critical flaws should get your attention.

Ransomware-as-a-service is the next big threat facing companies large and small because destructive exploits are now available to anyone.

August was a relatively light month for Microsoft vulnerabilities, but Patch Tuesday has fixes for several exploits, including — yet again — PrintNightmare.

July was a hot month for cyberattacks, and software makers issued numerous patches. We’ve already looked at patches from Microsoft, so here is a rundown of fixes from other vendors.