InfoWorld

Developers: apply these 10 mitigations first to prevent supply chain attacks

Current cybersecurity development risk frameworks don’t cover all of the tactics hackers used to compromise SolarWinds, log4j, or XZ Utils, says report, which offers a 'starter kit' of critical tasks.
continuitycentral.com

20 percent of organizations have had significant impacts relating to Log4j

The recently identified vulnerability in the Log4j Java logging package has created headaches for security professionals around the world. Three-fifths (61 percent) of organizations responding to the ...