all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Best of 2022: Spring4Shell: What Happened, Who’s Vulnerable and How to Mitigate

Add to bookmarks
Dec. 28, 2022, 2 p.m. | Salt Labs

Security Boulevard securityboulevard.com


The newly discovered vulnerability in the popular Java Spring framework, dubbed Spring4Shell, is all over the cyber news feeds today. Here, the Salt Labs team looks to clear up some confusion, explain what Spring4Shell really is, share who might be impacted, and offer tips for mitigating your risk. (Note, a robust debate has already emerged over whether “Spring4Shell” or “SpringShell” is correct – for now, we’re following the more common convention.)


What Happened?


On March 29, 2022, a Chinese researcher …

best of best of 2022 featured salt security security boulevard (original) spotlight spring spring4shell vulnerable

Visit resource

More from securityboulevard.com / Security Boulevard

The Evolving Cyber Landscape: Insights from 2024 Reports 10 hours ago | securityboulevard.com
breach cyber cyber landscape data +14
Seccomp for Kubernetes workloads 11 hours ago | securityboulevard.com
armo computing feature k8s-security +10
USENIX Security ’23 – “If Sighted People Know, I Should Be Able To Know:” Privacy … 1 day, 4 hours ago | securityboulevard.com
access authors camera conference +13
Snowflake Security Incident: A Wake-Up Call for CISOs | Grip 1 day, 15 hours ago | securityboulevard.com
breach call can cisos +14
StateRAMP vs FedRAMP: What’s The Difference Between Them? 1 day, 18 hours ago | securityboulevard.com
authorization authorization management contractors documents +18
Security and Human Behavior (SHB) 2024 1 day, 22 hours ago | securityboulevard.com
behavior co-founder conferences cybersecurity +16
Cultivating a Secure Business-Led IT Environment | Grip 1 day, 23 hours ago | securityboulevard.com
balance business culture discover +10
Senator: HHS Needs to Require Security Measures for Health Sector 1 day, 23 hours ago | securityboulevard.com
attack care cloud security cybersecurity +41
Liquidmatrix Security Digest Podcast – Episode 78 1 day, 23 hours ago | securityboulevard.com
brand breaches cyber dev +13

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Senior Security Researcher - Linux MacOS EDR (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel
View on infosec-jobs.com

Sr. Manager, NetSec GTM Programs

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com

SOC Analyst I

@ Fortress Security Risk Management | Cleveland, OH, United States
View on infosec-jobs.com