Security News

Well Known Vulnerability Still Putting Java Apps and Servers at Risk

It was first reported by security researchers nine months ago, but a vulnerability in the popular Apache Commons library continues to put thousands of Java applications and servers at risk of a remote code execution attack.

IBM Secures Hadoop in Analytics Cloud

IBM has added end-to-end data protection to IBM Cloud Infrastructure for Analytics, its cloud-based offering designed to ease the significant investment burden required for implementing homegrown, on-premises Big Data solutions.

Oracle's Quarterly Security Patch Includes 25 Java SE Fixes

Oracle recently issued the last of its Critical Patch Updates for the year, featuring fixes for 154 new security vulnerabilities in virtually all Oracle products, including 25 new security fixes for Java SE.

Research Firm Ranks DIY App Coding Tools

A research firm has turned its attention to low-code (or no-code), do-it-yourself tools that are seeing increasing use in the enterprise in the face of a mobile development skills shortage.

Mobile Dev Concerns: Hackers/Malware and Buggy Apps

Security concerns continue to be the No. 1 worry in enterprise mobile development projects, a new poll finds, while another study says 75 percent of apps are shipped sporting up to 10 bugs.

Data Theorem and Yahoo To Demo Open Source Mobile App Security Tool

Data Theorem Inc. and Yahoo will demo and then open source a new tool designed to simplify SSL security on iOS mobile apps.

Car Hack Highlights Security Concerns Topping New IoT Developer Survey

New IoT developer survey shows security -- including car hacks -- is worry No. 1, just as a real-world auto exploit is demonstrated by researchers and a massive vehicle recall is issued.

Oracle Issues Quarterly CPU, Fixes Zero Day

Oracle's latest quarterly Critical Patch Update (CPU) comprises 193 fixes for vulnerabilities in Oracle products, including 25 that address Java SE issues.

Datameer Adds Governance to Tame 'Wild West' Hadoop

Datameer today announced new data governance capabilities in its native Hadoop offering.

Xamarin Teams with IBM for Cross-Platform App Security Features

Expanding upon a previous integration pact with IBM and its MobileFirst platform for mobile apps, cross-platform development specialist Xamarin Inc. is now hooking up its tooling with IBM MobileFirst Protect security features.

Survey Identifies Back-end Integration as Major Mobile Challenge

Open source powerhouse Red Hat Inc. released details of a recent survey that indicates back-end integration is a primary challenges in enterprise mobile app development, almost on par with the perennial problem of security.

Security Firm Discloses Vulnerabilities in Google App Engine for Java

Researchers at Security Explorations Inc. say there are seven unpatched vulnerabilities within the Google App Engine for Java, including three complete JVM sandbox escapes, which could allow an attacker to execute malicious code on underlying systems or retrieve sensitive information from Google servers.

Oracle Releases 14 Java Security Patches, Last Patch Update for Java 7

Oracle's latest quarterly Critical Patch Update (CPU) includes 98 fixes for vulnerabilities in Oracle products.

VMware Releases Security Update for Java Flaw

VMware released a security fix for its products affected by a Java RTE flaw last Thursday.

More Bad News for Mobile App Security

New research from IBM sheds further light on the sorry state of mobile app security -- or, in the company's own words, the "alarming state of mobile insecurity."

Report Blasts Mobile Devs for Ignoring Known Security Flaws

Mobile app developers failed to fix Secure Sockets Layer (SSL) vulnerabilities that were identified some five months ago, McAfee Labs said in its latest threat report.

Oracle Issues 169 Security Fixes, 19 for Java

Oracle's latest quarterly Critical Patch Update (CPU), released this week, provided 169 new security vulnerability fixes across Oracle's product lines, including 19 for Java.

Security Vulnerabilities Found in Java Version of Google App Engine

Multiple serious vulnerabilities in the Java environment of Google's App Engine have been discovered by researchers.

Android Security Continues to Challenge Mobile Developers

Ongoing security vulnerabilities on the Android mobile platform are still plaguing developers, and the bad guys are even making inroads on iOS attacks, according to a new report from Trend Micro Inc.

Java Security Containers in the Microsoft Cloud

Waratek Locker is a containerized Runtime Application Self-Protection (RASP) product that provides security monitoring, policy enforcement and attack blocking from within the Java Virtual Machine (JVM).

Upcoming Events


Sign up for our newsletter.

I agree to this site's Privacy Policy.