The critical log4j vulnerability, the logging library of the widely used Apache web server, was worldwide in the news. As part of our services make use of Apache web servers, we therefore screened them immediately. The initial conclusion was that the vulnerability is not present in our core services. Because we didn’t enable log4j there.
Afterwards, we looked into third party frameworks that we use. There, we detected the presence of the log4j function in the Elastic Search environment. A popular open source environment for real-time indexing and search. We urgently updated this framework with a log4j patch.
We did this vulnerability sweep on top of our standard security monitoring and maintenance protocol.
For much of the AI boom, the business case seemed straightforward: automate routine work, reduce…
South Korea is preparing one of the largest national technology investment programs focused on artificial…
Artificial intelligence has transformed the technology industry over the past two years. Companies are investing…
At Icecat, every release is designed to improve how partners manage, discover, and distribute product…
Artificial intelligence is driving one of the biggest investment waves the technology industry has seen…
For years, search engines and social media have been the primary gateways to online shopping.…