Security News


More Bad News for Mobile App Security

New research from IBM sheds further light on the sorry state of mobile app security -- or, in the company's own words, the "alarming state of mobile insecurity."

Report Blasts Mobile Devs for Ignoring Known Security Flaws

Mobile app developers failed to fix Secure Sockets Layer (SSL) vulnerabilities that were identified some five months ago, McAfee Labs said in its latest threat report.

Oracle Issues 169 Security Fixes, 19 for Java

Oracle's latest quarterly Critical Patch Update (CPU), released this week, provided 169 new security vulnerability fixes across Oracle's product lines, including 19 for Java.

Security Vulnerabilities Found in Java Version of Google App Engine

Multiple serious vulnerabilities in the Java environment of Google's App Engine have been discovered by researchers.

Android Security Continues to Challenge Mobile Developers

Ongoing security vulnerabilities on the Android mobile platform are still plaguing developers, and the bad guys are even making inroads on iOS attacks, according to a new report from Trend Micro Inc.

Java Security Containers in the Microsoft Cloud

Waratek Locker is a containerized Runtime Application Self-Protection (RASP) product that provides security monitoring, policy enforcement and attack blocking from within the Java Virtual Machine (JVM).

Oracle's Quarterly Critical Patch Update Includes 25 Java Security Patches

Oracle's recently released quarterly Critical Patch Update (CPU) contained 155 new security vulnerability fixes across Oracle's product lines.

Studies: Developers Failing at Mobile App Privacy, Security

Two new research studies paint a bleak picture of mobile app privacy and security, putting the blame on developers in both cases.

Oracle Plugs 113 Security Holes, 20 for Java

Oracle's latest quarterly Critical Patch Update (CPU), released today, included 113 new security vulnerability fixes for hundreds of Oracle products.

Big Data Rivals Battle with Security Acquisitions

Rival Big Data companies Cloudera and Hortonworks continue to battle for Hadoop distribution supremacy, most recently concentrating on shoring up their respective security capabilities.

Kaazing Offers JMS Edition of Secure Gateway

Enterprise Web communications platform provider Kaazing has unveiled the new Java Message Service (JMS) edition of its secure gateway.

Oracle Adds Critical Patch for Java Cloud Service

Oracle has followed up its quarterly Critical Patch Update (CPU) with an additional security advisory for its Java Cloud Service.

Android Targeted by 97 Percent of Mobile Threats Last Year

A total of 804 new families or vulnerability variants discovered were targeted at Google's mobile OS platform during the second half of last year.

Facebook Launches Java APIs for Encrypted SD Storage

Dubbed "Conceal," the APIs are designed to encrypt large files on disk, initially for Android smartphones.

Adobe Patches Zero-Day Flash Vulnerability

Adobe on Tuesday released a security update for Adobe Flash Player 12.0.0.43 and earlier for a Flash flaw being actively used in the wild.

Oracle Cloud World: Ellison Talks Up Security and Future Cloud Plans

Oracle CEO Larry Ellison made a last-minute appearance at the company's Cloud World event in San Francisco this week, adding some C-level cheerleading to the daylong showcase of Oracle products.

Study: Java- and Android-Based Attacks Increased in 2013

According to Cisco's Annual Security Report, Java flaws accounted for 91 percent of all Web-based attacks last year.

Oracle's Quarterly Patch Fixes 36 Java Security Flaws

On Tuesday Oracle issued a Critical Patch Update for 144 vulnerabilities in their products, including 36 fixes for Java Standard Edition 7 (Java SE 7).

CSA Crafting Enterprise Cloud Security Framework

The Cloud Security Alliance (CSA) Wednesday launched an initiative that would aid enterprises in using cloud computing services to protect infrastructures.

Oracle Adds Java to Quarterly Updates, Defends Security Improvements

Oracle execs say recent moves like this prove the company is much more serious about Java security, but several security analysts still see flaws.

Upcoming Events

AppTrends

Sign up for our newsletter.

I agree to this site's Privacy Policy.