Fortify Software Inc. and the FindBugs project have launched a free service that will scan open-source Java software for bugs in the code. The Java Open Review project (JOR) lets open-source projects ...

A Google researcher has published details of a Java virtual machine bug that could be used to run unauthorized programs on a computer. The attack was disclosed Friday by Google’s Tavis Ormandy, who ...

Researchers have reported the existence of bugs in Java and Python which allows attackers to circumvent firewall defenses. In two separate security advisories over the past week, researchers Alexander ...

Oracle Corp. released an emergency update to its Java software for surfing the Web on Sunday, but security experts said the update fails to protect PCs from attack by hackers intent on committing ...

Oracle on Sunday issued an emergency Java update to patch two critical vulnerabilities, including one that had been exploited in ongoing and accelerating attacks. Also yesterday, a researcher noted ...

A Java update issued by Apple through Software Update last week contained a bug that could stop some Java applications working. Apple fixed the bug and released a new update, but if you did the ...

Oracle just scored points with the security community for rushing out an early patch for a critical security flaw in Java that was already being widely exploited by the cybercriminal underground. But ...

Oracle will release a new version of Java on Tuesday that will include 42 security fixes and will make changes to how Web-based Java content will be presented inside browsers. Thirty-nine of the ...

Online attackers have wasted no time seizing on a critical vulnerability in Oracle's Java software framework that makes it possible to install malware on computers running Windows, Mac OS X, or Linux.

It’s no secret that Java has moved to the top of the target list for many attackers. It has all the ingredients they love: ubiquity, cross-platform support and, best of all, lots of vulnerabilities.

A powerful new exploit has been identified in the wild that could turn PCs running outdated versions of Java into bots for spam or DDoS attacks, or even loot them for sensitive information. As ...

Java's reputation took a beating again, after Facebook revealed that attackers had infiltrated its internal systems after exploiting a zero-day vulnerability. Our team tests, rates, and reviews more ...