Infosecurity Magazine

Log4Shell Downloaded 40 Million Times in 2025

Sonatype has claimed that 13% of Log4j versions downloaded this year were vulnerable to the legacy critical Log4Shell bug ...
SecurityWeek

From Open Source to OpenAI: The Evolution of Third-Party Risk

Software supply chain attacks are evolving as open source and AI-generated code introduce new third-party risks. Learn how ...

Apache Commons Text: Code injection vulnerability in older versions

Apache Commons Text is used for processing character strings in Java apps. A critical vulnerability allows the injection of ...
Security Boulevard

Microsoft Expands its Bug Bounty Program to Include Third-Party Code

In a nod to the evolving threat landscape that comes with cloud computing and AI and the growing supply chain threats, Microsoft is broadening its bug bounty program to reward researchers who uncover ...
GitHub

Log4j2 appender for Report Portal

To start using Report Portal log appending you need to include this library into your project dependencies according to your build system. sending a File object as a log4j log message. In this case a ...
GitHub

onefoursix/Cloudera-Impala-JDBC-Example

Apache Impala (Incubating) is an open source, analytic MPP database for Apache Hadoop. This example shows how to build and run a Maven-based project to execute SQL queries on Impala using JDBC This ...
InfoWorld

React2Shell is the Log4j moment for front end development

Attackers are exploiting a Flight protocol validation failure that allows them to execute arbitrary code without ...
InfoWorld

Azul acquires enterprise Java middleware provider Payara

The acquisition marks a moment in enterprise Java innovation and builds on nearly eight years of collaboration between Azul and Payara, according to Azul. This collaboration between with the two began ...