Security News


Studies: Developers Failing at Mobile App Privacy, Security

Two new research studies paint a bleak picture of mobile app privacy and security, putting the blame on developers in both cases.

Oracle Plugs 113 Security Holes, 20 for Java

Oracle's latest quarterly Critical Patch Update (CPU), released today, included 113 new security vulnerability fixes for hundreds of Oracle products.

Big Data Rivals Battle with Security Acquisitions

Rival Big Data companies Cloudera and Hortonworks continue to battle for Hadoop distribution supremacy, most recently concentrating on shoring up their respective security capabilities.

Kaazing Offers JMS Edition of Secure Gateway

Enterprise Web communications platform provider Kaazing has unveiled the new Java Message Service (JMS) edition of its secure gateway.

Oracle Adds Critical Patch for Java Cloud Service

Oracle has followed up its quarterly Critical Patch Update (CPU) with an additional security advisory for its Java Cloud Service.

Android Targeted by 97 Percent of Mobile Threats Last Year

A total of 804 new families or vulnerability variants discovered were targeted at Google's mobile OS platform during the second half of last year.

Facebook Launches Java APIs for Encrypted SD Storage

Dubbed "Conceal," the APIs are designed to encrypt large files on disk, initially for Android smartphones.

Adobe Patches Zero-Day Flash Vulnerability

Adobe on Tuesday released a security update for Adobe Flash Player 12.0.0.43 and earlier for a Flash flaw being actively used in the wild.

Oracle Cloud World: Ellison Talks Up Security and Future Cloud Plans

Oracle CEO Larry Ellison made a last-minute appearance at the company's Cloud World event in San Francisco this week, adding some C-level cheerleading to the daylong showcase of Oracle products.

Study: Java- and Android-Based Attacks Increased in 2013

According to Cisco's Annual Security Report, Java flaws accounted for 91 percent of all Web-based attacks last year.

Oracle's Quarterly Patch Fixes 36 Java Security Flaws

On Tuesday Oracle issued a Critical Patch Update for 144 vulnerabilities in their products, including 36 fixes for Java Standard Edition 7 (Java SE 7).

CSA Crafting Enterprise Cloud Security Framework

The Cloud Security Alliance (CSA) Wednesday launched an initiative that would aid enterprises in using cloud computing services to protect infrastructures.

Oracle Adds Java to Quarterly Updates, Defends Security Improvements

Oracle execs say recent moves like this prove the company is much more serious about Java security, but several security analysts still see flaws.

Cloud Security Alliance's Call for Gov. Surveillance Transparency

A recent roundtable discussion hosted by the CSA discussed how both customers and providers are calling for more insight on federal data collecting programs like PRISM.

Survey: Enterprise Mobile Dev Slowed by C-Level Concerns

Information technology executives are dragging their feet because of concerns about cost, complexity and security, a recent survey finds.

Cloudera Releases Hadoop Security Module

Apache Hadoop developers working with SQL query engines can now rely on a new security tool from Cloudera Inc. that reportedly provides the granularity to secure data access from most SQL and business intelligence (BI) tools and scenarios.

Survey: Security Not a Top Priority for Many Software Developers

According to a new study by comScore, more than 40 percent of software developers globally say that security isn't a top priority for them, and a similar percentage don't use a secure application program process.

Java Remote Access Tool Used In PRISM Phishing Attack Targeting Gov't Workers

An attack campaign focused on government agencies is employing phishing e-mails to deliver a malicious payload containing a Java Remote Access Tool (RAT) called jRAT.

Study: Bad Enterprise Patch Management Results in 'Frightening' Java Vulnerabilities

Most browser Java installations continue to be unpatched or outdated, leaving the majority of users vulnerable to exploit code already in use in the wild.

Oracle: Renewed Security Focus Will Delay Java 8

"As a consequence of this renewed focus on security the Java 8 schedule, with a GA release in early September, is no longer achievable," the company said in a blog post made today.

Upcoming Events

AppTrends

Sign up for our newsletter.

I agree to this site's Privacy Policy.