Do you want your ad here?

Contact us to get your ad seen by thousands of users every day!

[email protected]

Security Warning: Your Java Attack Surface Just Got Bigger

  • March 17, 2022
  • 3673 Unique Views
  • < 1 min read

Building cloud-native Java applications is undoubtedly awesome.

However, it comes with undeniable new risks. Next to your own code, you are relying on so many other things.

Blindly depending on open-source libraries and Docker images can form a massive risk for your application. The wrong package can introduce severe vulnerabilities into your application, exposing your application and your user's data.

In the talk below we’ll show common threats, vulnerabilities, and misconfiguration including the recently disclosed issues in Log4j. Most importantly, you’ll learn how to protect your application with actionable remediation and best practices.

The above talk was part of the Friends of OpenJDK room at FOSDEM 2022.

Avatar photo

Brian Vermeer

Author

Java Champions & Developer Advocate and Software Engineer for Snyk. Passionate about Java, (Pure) Functional Programming, and Cybersecurity. Co-leading the Virtual JUG, NLJUG and DevSecCon community. Brian is also an Oracle Groundbreaker Ambassador and regular international speaker on mostly Java-related conferences.

Avatar photo

Brian Vermeer

Author

Java Champions & Developer Advocate and Software Engineer for Snyk. Passionate about Java, (Pure) Functional Programming, and Cybersecurity. Co-leading the Virtual JUG, NLJUG and DevSecCon community. Brian is also an Oracle Groundbreaker Ambassador and regular international speaker on mostly Java-related conferences.

Learn more

Trending

Week Month All

Foojay Podcast #65: Boost Your Career in 2025!

Make the Life of your Developer Client’s Easier with Smart Object Builders

The slow Death of the onjcmd Debugger Feature

Rate limiting with Redis: An essential guide

Fixed Window Counter Rate Limiter (Redis & Java)

Java Conferences in 2025

Reflections on 2024: A Remarkable Year for OmniFish, GlassFish, Piranha, and Jakarta EE

“Transitioning to Java”: My First Book!

Indexing all of Wikipedia, on a laptop

Book Review: Mastering the Java Virtual Machine

foojay: A Place for Friends of OpenJDK

Dashboard for OpenJDK Update Release Details

JDK14: New Features and Enhancements

Fun with Flags: My Top 10 Resources for JVM Flags

Performance of Modern Java on Data-Heavy Workloads: Real-Time Streaming

Performance of Modern Java on Data-Heavy Workloads: Batch Processing

How does Java handle different Images and ColorSpaces – Part 1

How does Java handle different Images and ColorSpaces – Part 2

How does Java handle different Images and ColorSpaces – Part 3

How does Java handle different Images and ColorSpaces – Part 4

Indexing all of Wikipedia, on a laptop

Working with Multiple Carets in IntelliJ IDEA

Java 17 on the Raspberry Pi

Clean Shutdown of Spring Boot Applications

Foojay Slack: bit.ly/join-foojay-slack

How to Create Mobile Apps with JavaFX (Part 1)

Beginning JavaFX Applications with IntelliJ IDE

SpringBoot 3.2 + CRaC

Project Panama for Newbies (Part 1)

Java 21 is Available Today, And It’s Quite the Update

Do you want your ad here?

Contact us to get your ad seen by thousands of users every day!

[email protected]

Related Articles

5 Tips to Create Secure Docker Images for Java Applications
5 Tips to Create Secure Docker Images for Java Applications
Dec 25 5,1K
Brian Vermeer
Security
7 Reasons Why, After 26 Years, Java Still Makes Sense!
7 Reasons Why, After 26 Years, Java Still Makes Sense!
Mar 15 22,1K
A N M Bazlur Rahman
Java Core
2
Opinion Java Beginner
Are Java Security Updates Important?
Are Java Security Updates Important?
Aug 03 3,5K
Simon Ritter
Security

Comments (0)

Highlight your code snippets using [code lang="language name"] shortcode. Just insert your code between opening and closing tag: [code lang="java"] code [/code]. Or specify another language.

No comments yet. Be the first.

Set Event Reminder

Subscribe to foojay updates:

https://foojay.io/feed/
Copied to the clipboard