Chris Wysopal: Open source is becoming a national security risk | CSO Online: "And of those enterprise customers, 95% of those customers were using Java. So that just shows you how popular Java is; if there is another vulnerability like this in Java, it is going to be widespread. And 88% were using Log4j and 58% were using the vulnerable version."