Headlines screamed “The Internet’s on fire!” when the Log4Shell zero-day vulnerability emerged in December 2021. The Spring4Shell vulnerability revealed three months later underscored the seriousness of these challenges. What have we collectively learned from these infernos and their aftermath? How can we improve our posture for the next one?

This session will include an examination of popular mitigation strategies, including:
* Updating individual application dependencies;
* Network-focused lockdowns at the container platform and service mesh levels, including Kubernetes and Istio; and
* Edge mitigation strategies including Web Application Firewall.

This session will include both slides and a brief demonstration of relevant technologies like WAF with ModSecurity rules.