-
Oracle to Block JAR Files Signed with MD5 Starting with April 2017
Oracle says that starting with April 18, 2017, Java (JRE) will treat all JAR files signed with the MD5 algorithm as unsigned, meaning they'll be considered insecure and blocked from running.
- January 20, 2017
- 06:02 AM
0
-
Labor Department Sues Oracle for Paying White Males More, Favoring Indian Hires
Oracle risks to lose all current and future contracts with the US government after the US Department of Labor (DoL) has filed a lawsuit against the company's US Division, Oracle America., Inc..
- January 19, 2017
- 06:40 AM
0
-
New Webinar: Choose Your Own Investigation — Browser Attack Edition
Modern attacks have shifted focus to the browser, yet detection tools remain largely blind to the crucial activity happening there.
Join Push Security on February 11th for an interactive "choose-your-own-adventure" webinar on ClickFix, credential phishing, and other in-browser attacks we've observed in the wild.
-
Oracle Delivers a Whopping 270 Fixes in 2017's First Critical Patch Update
Today, Oracle released their January 2017 Critical Patch Update, or CPU, that resolves a massive 270 vulnerabilities across all of their products. Of these 270 vulnerabilities, over 100 are remotely exploitable without authentication.
- January 18, 2017
- 09:46 PM
- 2
-
Android Was 2016's Most Vulnerable Product
With 2016 officially over, we can crown Android as 2016's product with most vulnerabilities, and Oracle as the vendor with the most security bugs.
- January 02, 2017
- 07:15 AM
- 9
-
MySQL Databases Need Urgent Updates to Address Three Critical Security Bugs
System administrators should be patching their MySQL installations if they haven't in the last three weeks, to safeguard their database servers against three critical security flaws discovered by Polish security researcher Dawid Golunski.
- November 07, 2016
- 03:12 PM
- 0
-
Oracle's October Critical Patch Update fixes 253 Vulnerabilities
Today, Oracle released their October Critical Patch Update, or CPU, that resolves 253 vulnerabilities across all of their products. All of these vulnerabilities are rated as critical as they allow remote code execution in some form. As remote code execution allows attackers to remotely execute commands on an affected computer,
- October 19, 2016
- 02:58 PM
- 0
-
Oracle, Adobe, and Microsoft Release Updates for Critical Vulnerabilities
Today Microsoft, Oracle, and Adobe all released security updates for critical vulnerabilities in their products. Critical vulnerabilities allow attackers to execute commands on the vulnerable computers that could allow them to download and installer further programs without your permission.
- February 09, 2016
- 06:33 PM
- 0
-
Oracle Removing Browser Plugin Support in Future Versions of Java
Oracle announced yesterday that they will be deprecating the use of Java browser plugins starting in JRK 9, with it ultimately being removed altogether in future versions of the Java runtime environment. This is a important step in browser security as Java is a common target for exploit kits and attackers.
- January 29, 2016
- 11:08 AM
- 0
0
