-
By John K. Waters
Oracle has agreed to overhaul its Java security update process to settle Federal Trade Commission charges that the company deceived consumers by not informing them that the updates left older, still vulnerable versions of Java running on their computers.
-
PHP 7 has finally arrived. It's the first major number version of the popular Web scripting language since 2004, and it was released just before a new software security report branded PHP as among the most insecure of programming languages.
-
By John K. Waters
Having just emerged from stealth mode, SourceClear helps Pivotal fix Spring Social core library vulnerability that let attackers bypass authentication controls to hijack user accounts.
-
By John K. Waters
It was first reported by security researchers nine months ago, but a vulnerability in the popular Apache Commons library continues to put thousands of Java applications and servers at risk of a remote code execution attack.
-
IBM has added end-to-end data protection to IBM Cloud Infrastructure for Analytics, its cloud-based offering designed to ease the significant investment burden required for implementing homegrown, on-premises Big Data solutions.
-
By John K. Waters
Oracle recently issued the last of its Critical Patch Updates for the year, featuring fixes for 154 new security vulnerabilities in virtually all Oracle products, including 25 new security fixes for Java SE.
-
A research firm has turned its attention to low-code (or no-code), do-it-yourself tools that are seeing increasing use in the enterprise in the face of a mobile development skills shortage.
-
By John K. Waters
Seven years since inception, Building Security In Maturity Model version 6 is released, reflecting a set of enterprise-wide software security best practices based only on real-world data.
-
Security concerns continue to be the No. 1 worry in enterprise mobile development projects, a new poll finds, while another study says 75 percent of apps are shipped sporting up to 10 bugs.
-
Data Theorem Inc. and Yahoo will demo and then open source a new tool designed to simplify SSL security on iOS mobile apps.
-
New IoT developer survey shows security -- including car hacks -- is worry No. 1, just as a real-world auto exploit is demonstrated by researchers and a massive vehicle recall is issued.
-
By John K. Waters
Oracle's latest quarterly Critical Patch Update (CPU) comprises 193 fixes for vulnerabilities in Oracle products, including 25 that address Java SE issues.
-
Datameer today announced new data governance capabilities in its native Hadoop offering.
-
Expanding upon a previous integration pact with IBM and its MobileFirst platform for mobile apps, cross-platform development specialist Xamarin Inc. is now hooking up its tooling with IBM MobileFirst Protect security features.
-
Open source powerhouse Red Hat Inc. released details of a recent survey that indicates back-end integration is a primary challenges in enterprise mobile app development, almost on par with the perennial problem of security.
-
By John K. Waters
Researchers at Security Explorations Inc. say there are seven unpatched vulnerabilities within the Google App Engine for Java, including three complete JVM sandbox escapes, which could allow an attacker to execute malicious code on underlying systems or retrieve sensitive information from Google servers.
-
By John K. Waters
Oracle's latest quarterly Critical Patch Update (CPU) includes 98 fixes for vulnerabilities in Oracle products.