Java Archives - Help Net Security

Java

Container usage has grown in complexity, specific security controls are needed

October 31, 2019

Container usage has grown in scale and complexity, and doubled in density, according to Sysdig. As container technologies continue to transform how organizations deliver …

Microsoft to block 40+ additional file extensions in Outlook on the web

September 30, 2019

Microsoft is planning to block by default 40+ new file types in Outlook on the web to improve the security for their customers. “We took the time to audit the existing …

Heading into October Patch Tuesday on the heels of big announcements from Microsoft

October 5, 2018

October is here and Patch Tuesday is next week, followed quickly by Halloween. Don’t be scared (unless you are a Facebook user)! The winds of change are blowing this fall …

Zip Slip vulnerability affects thousands of projects

June 5, 2018

An arbitrary file overwrite vulnerability that can be exploited by attackers to achieve code execution on a target system affects a myriad of projects and multiple ecosystems, …

April Patch Tuesday forecast: Expect updates for Adobe Flash, others

April 9, 2018

Springtime is here! Although up here in Minnesota you wouldn’t believe it as we received snowfalls that rivaled anything in the past 34 years! As spring arrives you think of …

Oracle addresses 237 vulnerabilities across multiple products

January 17, 2018

The January 2018 Oracle Critical Patch Update (CPU) fixes 237 new security vulnerabilities across hundreds of Oracle products, including the company’s widely used Oracle …

The pervasive risk of vulnerable open source components

October 18, 2017

Veracode announced findings from the 2017 State of Software Security Report, a comprehensive review of application security testing data from scans conducted by a base of more …

Oracle fixes Solaris 10 flaw targeted by leaked NSA exploit

April 19, 2017

Oracle has pushed out a record-breaking 299 fixes for vulnerabilities in its many, many products, and among them is a Solaris 10 bug whose existence has been revealed through …

Java and Flash top list of most outdated programs on users’ PCs

March 23, 2017

52% of the most popular PC applications, including Flash and Java, are out-of-date. People are exposing their PC and their personal data to risks, as malware targets older …

Post-pumpkin Patch Tuesday: What’s in store for November

November 3, 2016

There has been a lot of activity since October’s Patch Tuesday. During that short period of time, Oracle released its quarterly CPU, including an update for Java JRE; Adobe …

How developers fight the rise in web application attacks

May 19, 2016

Recent reports highlight the challenge faced by developers in securing code as attacks against web applications increase, while security budgets for developers remain low, …

Oracle patches 136 flaws in 49 products

April 20, 2016

Oracle released the April 2016 Critical Patch Update, which provides fixes for 136 vulnerabilities in 49 products, including Java SE and MySQL, the company’s Database …

Java

Container usage has grown in complexity, specific security controls are needed

Microsoft to block 40+ additional file extensions in Outlook on the web

Heading into October Patch Tuesday on the heels of big announcements from Microsoft

Zip Slip vulnerability affects thousands of projects

April Patch Tuesday forecast: Expect updates for Adobe Flash, others

Oracle addresses 237 vulnerabilities across multiple products

The pervasive risk of vulnerable open source components

Oracle fixes Solaris 10 flaw targeted by leaked NSA exploit

Java and Flash top list of most outdated programs on users’ PCs

Post-pumpkin Patch Tuesday: What’s in store for November

How developers fight the rise in web application attacks

Oracle patches 136 flaws in 49 products

Don't miss

Better cybersecurity hinges on understanding actual risks and addressing the right problems

Business efficiency metrics are more important than detection metrics

Elasticsearch security: Understand your options and apply best practices

Attackers are breaching F5 BIG-IP devices, check whether you’ve been hit

Data exfiltration: The art of distancing