A presenter at the upcoming RSA security conference explains how security must be continuous and automated to be successful in DevOps.
When Oracle publishes its next quarterly patch update in April, the company will begin treating JAR files signed with the MD5 hashing algorithm as unsigned.
Near-record Critical Patch Update provides fixes for 270 vulnerabilities across 45 products.
Java security expert finds vulnerability especially serious and laments Oracle's fix: a user-configurable whitelist/blacklist filter.
Doesn't readability count in criminal ransom notes anymore?
After the recent MongoDB debacle in which tens of thousands of unsecured open source databases were hijacked for ransom, security specialists are predicting more of the same for 2017 -- at least until the good guys catch up and things settle down in the second half.
Thousands of open MongoDB databases have been attacked by hackers who hijack the stored data and demand ransom to return the contents, with more bad actors piling on by the day.