London, UK
Engineering Manager for the Managed Rules (WAF) team.
2021-12-15
This vulnerability is actively being exploited and anyone using Log4J should update to version 2.16.0 as soon as possible, even if you have previously updated to 2.15.0. The latest version can be found on the Log4J download page....
2021-12-10
A zero-day exploit affecting the popular Apache Log4j utility (CVE-2021-44228) was made public on December 9, 2021 that results in remote code execution (RCE). This vulnerability is actively being exploited and anyone using Log4j should update to version 2.15.0 as soon as possible....
2021-02-19
Allowing users to securely log parts of the request that match firewall rules while making it impossible for anyone else to decrypt....
