Topic: log4shell

Lack of automation leaves companies vulnerable to attacks like Log4Shell and Spring4Shell

Sonatype found that nearly 70% of dependency management decisions are suboptimal in a study that evaluated 100,000 production applications and 4,000,000 open-source component migrations.  A large part of this is due to lack of security automation, explained Ax Sharma, senior security researcher, and advocate at Sonatype, in a webinar called “The Impact of Zero-Day Attacks … continue reading

SD Times news digest: SnapLogic raises $165 million; Vulnerability found in log4j 2; December release of Python for VS Code

SnapLogic, the enterprise automation company, today announced that it has raised $165 million at a one billion dollar valuation. This funding will go towards accelerating the company’s AI-powered data and application integration. This financing round was led by Sixth Street Growth, which will now be joining the SnapLogic board. These funds will go directly towards … continue reading

DMCA.com Protection Status