We will cover this in more detail in the Cyber Security SIG presentation May 5, 2022.
A very recently discovered vulnerability in all recent Java versions allows attackers to create forged SSL certificates, signed JASON WEB Tokens, encrypted handshakes, WebAauth authentication messages, and more. A vulnerability akin to the Doctor Who blank IDentity card.
The vulnerability was fixed in the April 2022 Critical Patch Update.
Probably not something you need to address as a coder, BUT you should be aware that most of ecommerce needs to address and you need to be aware of.
No comments:
Post a Comment