Software Vulnerabilities: From Log4J and SpringShell to Cyber Warfare

Watch a 33-minute conference talk from EclipseCon 2022 exploring the evolution of cybersecurity threats and vulnerability management since the millennium. Dive into how the landscape has shifted from having 60 days to address software vulnerabilities to facing immediate exploitation before patches are available. Learn about the growing challenges of cybercrime and cyber-warfare, examining how developers can become both targets and inadvertent enablers of security breaches. Gain insights through analysis of the Log4Shell and SpringShell vulnerabilities to understand common ways software becomes vulnerable and discover practical approaches to reduce security risks. Perfect for all experience levels, this accessible presentation by Steve Poole provides essential knowledge about modern cybersecurity challenges in software development.