-
By John K. Waters
Seven years since inception, Building Security In Maturity Model version 6 is released, reflecting a set of enterprise-wide software security best practices based only on real-world data.
-
Security concerns continue to be the No. 1 worry in enterprise mobile development projects, a new poll finds, while another study says 75 percent of apps are shipped sporting up to 10 bugs.
-
Data Theorem Inc. and Yahoo will demo and then open source a new tool designed to simplify SSL security on iOS mobile apps.
-
New IoT developer survey shows security -- including car hacks -- is worry No. 1, just as a real-world auto exploit is demonstrated by researchers and a massive vehicle recall is issued.
-
By John K. Waters
Oracle's latest quarterly Critical Patch Update (CPU) comprises 193 fixes for vulnerabilities in Oracle products, including 25 that address Java SE issues.
-
Datameer today announced new data governance capabilities in its native Hadoop offering.
-
Expanding upon a previous integration pact with IBM and its MobileFirst platform for mobile apps, cross-platform development specialist Xamarin Inc. is now hooking up its tooling with IBM MobileFirst Protect security features.
-
Open source powerhouse Red Hat Inc. released details of a recent survey that indicates back-end integration is a primary challenges in enterprise mobile app development, almost on par with the perennial problem of security.
-
By John K. Waters
Researchers at Security Explorations Inc. say there are seven unpatched vulnerabilities within the Google App Engine for Java, including three complete JVM sandbox escapes, which could allow an attacker to execute malicious code on underlying systems or retrieve sensitive information from Google servers.
-
By John K. Waters
Oracle's latest quarterly Critical Patch Update (CPU) includes 98 fixes for vulnerabilities in Oracle products.
-
Oracle has improved Java's security significantly over the past couple years, but it's still not enough.
-
VMware released a security fix for its products affected by a Java RTE flaw last Thursday.
-
New research from IBM sheds further light on the sorry state of mobile app security -- or, in the company's own words, the "alarming state of mobile insecurity."
-
Mobile app developers failed to fix Secure Sockets Layer (SSL) vulnerabilities that were identified some five months ago, McAfee Labs said in its latest threat report.
-
HP Security Research offers at least part of the answer as to why Java had no major zero-day vulnerabilities discovered and exploited in the wild in 2014.
-
John talks with security experts about using containerization as a technique to keep older Java instances secure.
-
Oracle's latest quarterly Critical Patch Update (CPU), released this week, provided 169 new security vulnerability fixes across Oracle's product lines, including 19 for Java.
-
Experts weigh in on how you'll see top trends like Paas, mobile and DevOps converge, why security and automation will get even more important, the connection between distributed apps and automation and more.
-
Multiple serious vulnerabilities in the Java environment of Google's App Engine have been discovered by researchers.
-
Ongoing security vulnerabilities on the Android mobile platform are still plaguing developers, and the bad guys are even making inroads on iOS attacks, according to a new report from Trend Micro Inc.