A new zero-day exploit in multiple versions of Java puts roughly 1 billion users at risk to attackers and malicious code. The flaw was discovered by researchers at Poland's Security Explorations, a ...

The attacks discovered last week that exploited a previously unknown Java vulnerability were likely launched by the same attackers that previously targeted security firm Bit9 and its customers, ...

Oracle contributes to the problem by not working more closely with the security industry on Java defenses, one security expert said A zero-day Java exploit found for sale in the criminal underground ...

In October, I showed why Java vulnerabilities continue to be the top moneymaker for purveyors of “exploit kits,” commercial crimeware designed to be stitched into hacked or malicious sites and exploit ...

The sector most heavily impacted by the Spring4Shell Java flaw is technology, according to security firm Check Point. Spring4Shell is a bug worth paying attention to and could be a software supply ...

A new exploit for a previously unknown and unpatched Java vulnerability is being actively used by attackers to infect computers with malware, according to researchers from security firm FireEye. “We ...

Just in time for the new year, there's a new Java zero-day exploit out in the wild. It's already being used by criminals to attack your Web browser, and the only defense is to disable Java for ...

Attackers using two recently-uncovered Java unpatched vulnerabilities, or “zero-days,” have quickly expanded their reach by going mainstream, security experts said today. And on Tuesday, Mozilla, ...

Oracle released emergency patches for Java on Monday to address two critical vulnerabilities, one of which is actively being exploited by hackers in targeted attacks. The vulnerabilities, identified ...

Last week, a Google security researcher detailed a little-known feature built into Java that can be used to launch third-party applications. Today, security experts unearthed evidence that a popular ...

Online attackers have wasted no time seizing on a critical vulnerability in Oracle's Java software framework that makes it possible to install malware on computers running Windows, Mac OS X, or Linux.

In 2012 and again in 2013 my colleague Will Oremus wrote that, “you should probably disable Java on your browser right now.” Welcome to the 2015 edition! Java is a popular programming language often ...