The Log4j security iceberg has far from melted away

Cybersecurity analyst Davey Winder warns that NHS organisations are still at risk from the Log4j ‘Log4Shell’ threat, an exploit in an open-source Java logging library used widely across various applications and services, which could allow for remote code execution attacks. This comes despite organisations taking action to mitigate the risk as advised by the National Cyber Security Centre (NCSC) and NHS Digital. New exploits are being developed constantly highlighting the need for vigilance and updated security measures.