Software developers use a large number of open-source components, often oblivious to the security risks they introduce or the vulnerabilities that are later discovered in them.
Lucian Constantin | 15 Nov | Read more
Fraunhofer Institute researchers are working to speed up the scanning of mobile app code for security flaws, aiming to offer developers in a few milliseconds the kind of analysis that once required an all-night scan of code.
Peter Sayer | 10 Mar | Read more
Starting on Tuesday, the million or so third-party applications that use Twitter data must start encrypting all of their communications with the Twitter API (application programming interface), in order to improve security and maintain data integrity.
Joab Jackson | 15 Jan | Read more
Chinese hackers are using an automated tool to exploit known vulnerabilities in Apache Struts, in order to install backdoors on servers hosting applications developed with the framework.
Lucian Constantin | 14 Aug | Read more
Oracle plans to make changes to strengthen the security of Java, including fixing its certificate revocation checking feature, preventing unsigned applets from being executed by default and adding centralized management options with whitelisting capabilities for enterprise environments.
Lucian Constantin | 31 May | Read more