Security News
A vulnerability in Thales' Cinterion EHS8 M2M module, a Java-powered embedded 3G system used in millions of Internet-of-Things devices for connectivity, was revealed yesterday by IBM's X-Force Red. The bug, disclosed to Thales and addressed in a patch made available to IoT vendors in February, makes it possible for an attacker to extract the code and other resources from a vulnerable device.
A recently discovered multi-platform Java ransomware uses a Java image file to evade detection, BlackBerry security researchers report. After establishing a foothold onto the environment, the attackers executed the Java ransomware module, which encrypted all file servers connected to the network, including backup systems.
Oracle has released a sweeping set of security patches across the breadth of its software line. The January update, delivered one day after Microsoft, Intel, Adobe, and others dropped their scheduled monthly patches, addresses a total of 334 security vulnerabilities across 93 different products from the enterprise giant.
A cybersecurity research company has uncovered over 30 security issues in Java Card technology, but Oracle and Gemalto appear to downplay the impact of the flaws. read more
Multiple pre-auth remote code exec holes need pasting over, enterprise IT giant warns Oracle has issued its quarterly security updates, patching a total of 296 vulnerabilities across its massive...
Unofficial patches have been released for two unfixed Oracle Java Runtime Environment (RE) vulnerabilities discovered by Google Project Zero researcher Mateusz Jurczyk. read more
Vuln hunters warn malicious applets can bust through protections, snoop on or hijack access gizmos Bug hunters say Oracle's Java Card platform is host to a dozen and a half security flaws that...
Poland-based cybersecurity research firm Security Explorations claims to have identified nearly 20 vulnerabilities in Oracle’s Java Card, including flaws that could be exploited to compromise the...
Oracle announced the general availability of Java SE 12 (JDK 12), continuing the six-month release cadence that provides enterprises and developers faster access to completed enhancements to the...
Worst brew than that time El Reg went on a road trip and stopped at a Denny's IBM has issued a security alert over five vulnerabilities in its golden boy Watson analytics system.…