Log4Shell remains a big threat and a common cause for security breaches

The Log4Shell vulnerability in Log4j, a popular open-source Java library, remains a common cause of security breaches a year after being patched. Despite a decrease in vulnerability, 72% of organisations were still at risk as of October 2022. Log4Shell exploitation is still a threat and can lead to significant business costs. Experts urge companies to adopt software composition analysis and secure supply chain management practices.