In late November, Alibaba’s security team was the first to notify the Apache Software Foundation (ASF) about the devastating Log4j vulnerability. Though Alibaba Cloud was not known to be compromised, the company is nevertheless facing consequences from Chinese regulators. The Ministry of Industry and Information Technology (MIIT) is taking Alibaba to task over not reporting the breach to its officials first. The consequence will be a suspension of the cybersecurity relationship between the Chinese government and Alibaba Cloud for six months, something that could be costly for the tech and retail giant. The state is one of its largest customers,...