Dark Reading

Zero Day Java Vulnerability Allows McRat Trojan Infections

A newly discovered zero-day vulnerability in the most recent versions of Java 6 and Java 7 is being actively exploited by attackers to install malicious software on vulnerable PCs. "We detected a ...
InfoWorld

Data security in mobile Java applications

The recent release of MIDP (Mobile Information Device Profile) features a major improvement over version 1.0. Version 2.0 includes enhanced mobile code and application security through a well-defined ...
InfoWorld

Thirteen rules for developing secure Java applications

Make Java security a top priority at every stage of application development, from class-level language features to API endpoint authorization Security is one of the most complex, broad, and important ...
InfoQ

OpenJDK Discusses Post-SecurityManager Practices

Following the introduction of JEP-411 to deprecate Java’s SecurityManager, several projects have spoken up to discuss the impact and expected outcome of this change and how it is implemented in ...
Cybernews

Critical compromise: Axios NPM library with 100M weekly downloads is delivering malware

A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...
heise online

Vulnerabilities threaten IBM Installation Manager, Java Runtime & Co.

Attackers can target various software vulnerabilities in IBM Installation Manager, Java Runtime, Packaging Utility and Personal Communications (PCOMM). There are currently no reports of ongoing ...
NBC News

Why and How to Disable Java on Your Computer Now

People, it's time to disable Java on all your computer Web browsers, at least temporarily. The Java exploit discovered yesterday (Jan. 10) has already spread to at least four different browser exploit ...