Apache Log4j bug: China’s industry ministry pulls support from Alibaba Cloud for not reporting flaw to government first

• The Ministry of Industry and Information Technology said it will suspend work with Alibaba Cloud as a cybersecurity threat intelligence partner for six months
• Notifying vendors first about security flaws is a cybersecurity industry norm, but a new law encourages Chinese companies to first notify the government