Researchers at Security Explorations Inc. say there are seven unpatched vulnerabilities within the Google App Engine for Java, including three complete JVM sandbox escapes, which could allow an attacker to execute malicious code on underlying systems or retrieve sensitive information from Google servers.
Oracle's latest quarterly Critical Patch Update (CPU) includes 98 fixes for vulnerabilities in Oracle products.
VMware released a security fix for its products affected by a Java RTE flaw last Thursday.
New research from IBM sheds further light on the sorry state of mobile app security -- or, in the company's own words, the "alarming state of mobile insecurity."
Mobile app developers failed to fix Secure Sockets Layer (SSL) vulnerabilities that were identified some five months ago, McAfee Labs said in its latest threat report.
Oracle's latest quarterly Critical Patch Update (CPU), released this week, provided 169 new security vulnerability fixes across Oracle's product lines, including 19 for Java.
Multiple serious vulnerabilities in the Java environment of Google's App Engine have been discovered by researchers.
Ongoing security vulnerabilities on the Android mobile platform are still plaguing developers, and the bad guys are even making inroads on iOS attacks, according to a new report from Trend Micro Inc.
Waratek Locker is a containerized Runtime Application Self-Protection (RASP) product that provides security monitoring, policy enforcement and attack blocking from within the Java Virtual Machine (JVM).
Oracle's recently released quarterly Critical Patch Update (CPU) contained 155 new security vulnerability fixes across Oracle's product lines.
Two new research studies paint a bleak picture of mobile app privacy and security, putting the blame on developers in both cases.
Oracle's latest quarterly Critical Patch Update (CPU), released today, included 113 new security vulnerability fixes for hundreds of Oracle products.
Rival Big Data companies Cloudera and Hortonworks continue to battle for Hadoop distribution supremacy, most recently concentrating on shoring up their respective security capabilities.
Enterprise Web communications platform provider Kaazing has unveiled the new Java Message Service (JMS) edition of its secure gateway.
Oracle has followed up its quarterly Critical Patch Update (CPU) with an additional security advisory for its Java Cloud Service.
A total of 804 new families or vulnerability variants discovered were targeted at Google's mobile OS platform during the second half of last year.
Dubbed "Conceal," the APIs are designed to encrypt large files on disk, initially for Android smartphones.
Adobe on Tuesday released a security update for Adobe Flash Player 184.108.40.206 and earlier for a Flash flaw being actively used in the wild.
Oracle CEO Larry Ellison made a last-minute appearance at the company's Cloud World event in San Francisco this week, adding some C-level cheerleading to the daylong showcase of Oracle products.
According to Cisco's Annual Security Report, Java flaws accounted for 91 percent of all Web-based attacks last year.