adtmag.com

Waratek's Giannakidis: Removing Serialization from Java Is Not the End of the Story

Last month, Oracle's chief architect, Mark Reinhold, said during a conference Q&A that one of Oracle's long-term goals is to change the way Java handles object serialization. In fact, he called the ...
techtimes

Java Applications Have Major Security Flaws, European Researchers Warn

Java applications, widely used in mobile games, robots, embedded systems, and business applications, have been scrutinized by European researchers led by Alexandre Bartel, Professor of Software ...
VentureBeat

Need to detect open source Java vulnerabilities grows, Azul releases tool designed to help

Want smarter insights in your inbox? Sign up for our weekly newsletters to get only what matters to enterprise AI, data, and security leaders. Subscribe Now Ever since Log4j highlighted the dangers of ...
ZDNet

More than 75% of all vulnerabilities reside in indirect dependencies

The vast majority of security vulnerabilities in open-source projects reside in indirect dependencies rather than directly and first-hand loaded components. "Aggregating the numbers from all ...
CSOonline

PayPal is the latest victim of Java deserialization bugs in Web apps

PayPal has fixed a serious vulnerability in its back-end management system that could have allowed attackers to execute arbitrary commands on the server and potentially install a backdoor. The ...
InfoWorld

Thirteen rules for developing secure Java applications

Make Java security a top priority at every stage of application development, from class-level language features to API endpoint authorization Security is one of the most complex, broad, and important ...