<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=705633339897683&amp;ev=PageView&amp;noscript=1">


Three key facts to consider when developing with open source in a post-Log4Shell world

A few weeks ago, Tidelift CEO and co-founder Donald Fischer sat down with guest speaker Sandy Carielli from Forrester to chat about Log4Shell, open ...
Amy Hays
by Amy Hays
on March 29, 2022

How to prepare your organization for the next Log4Shell

By Kanish Sharma on February 1, 2022
The last few months have seen a flurry of activity around improving cyber security and the overall health and safety of the open source software ...

FTC warns of legal action for failure to protect against open source vulnerabilities—here’s how you can minimize risk

By Donald Fischer on January 7, 2022
This week, in response to the ongoing fallout from the Log4Shell vulnerability, the United States Federal Trade Commission issued an alert warning ...

Log4Shell: What your organization needs to know about the zero-day vulnerability in Log4j, and how Tidelift can help

By Kanish Sharma on January 5, 2022
It was less than a month ago that news of the Log4j vulnerability called Log4Shell broke. The news and fixes around the zero-day vulnerability in ...

Tidelift briefing: What you need to know about the Log4Shell vulnerability

By Mark Galpin on December 15, 2021
It’s Wednesday, December 15, 2021. It has been a mad scramble over the last few days to understand the impact of the Log4Shell vulnerability (first ...

Log4Shell highlights the need to proactively cooperate with open source maintainers at scale

By Luis Villa on December 14, 2021
Over the weekend, there was much ado on tech Twitter about the Log4Shell vulnerability and the reality of unpaid maintainers being asked to shoulder ...

Tidelift advisory | Log4Shell critical vulnerability: what you need to know and do

By Jeremy Katz on December 11, 2021
In this advisory, we will address the core facts regarding the recently disclosed security vulnerability in the Apache log4j project, which has been ...

Don't miss the latest from Tidelift

Filter by Topic