Oracle drops 219 fixes in October 2019 critical patch update
Patch "without delay", Oracle tells its big enterprise customers.
Patch "without delay", Oracle tells its big enterprise customers.
Some versions of Struts 2 by default are using a file upload library with a two-year old remotely exploitable security flaw.
GitHub's security service for developers could catch bugs before they're used in a massive hack.
Hand-built archive processing libraries and shared code spread a critical flaw to thousands of software projects.
Mozilla's Firefox 52 hits key milestones in its plan to improve security for users.
Old versions of Flash, Java, and Internet Explorer on Windows continue to create a soft underbelly for the enterprise, according to a new study by authentication firm Duo Security.
A harsh reality for the information security sector is that the businesses we are asked to protect are battling businesses that are built to attack.
Kane Lightowler | 06 Jun | Read more
The US Federal Trade Commission (FTC) has approved an order that binds Oracle to being truthful with consumers about the security of updates for its widely-installed Java SE software.
Australian PC users are making slow progress in reducing their exposure to unpatched applications and operating systems, new figures from Flexera Software have shown even as major vendors step up their efforts to remove key vulnerable software from circulation.
David Braue | 29 Jan | Read more
Foodies looking for inspiration for that pork belly might want to avoid the recipe from the Naked Chef’s website, jamieoliver[dot]com. That is, until the website stops serving up an exploit for Flash Player
An exploit kit known as Angler is targeting a previously unseen flaw in the latest version of Flash Player, which Adobe only updated a week ago.
Waratek is introducing its first product aimed at Java application security, and it works by identifying weaknesses, especially in open-source platforms, and then acts like a shield against attacks.
Ellen Messmer | 17 Jun | Read more
Once upon a time, Microsoft was the favorite target of malware developers. As Microsoft improved the defenses in its software, though, cybercrooks moved on to easier pickings. Adobe was a prime target for a while, but Adobe followed Microsoft's lead and made its software more secure as well. According to data from the 2014 IBM X-Force Threat Intelligence Quarterly Report, the favorite target is now Java.
Tony Bradley | 05 Mar | Read more
Java continues to be the dominant attack vector for Web-based security exploits, facilitated by continuing enterprise use of the end-of-life and highly-compromised Java 6 platform, Cisco Systems has warned in its 2014 Annual Security Report.
David Braue | 22 Jan | Read more
Admins now can link apps to a specific version of programming language
John P. Mello Jr. | 13 Sep | Read more