A new zero-day exploit in multiple versions of Java puts roughly 1 billion users at risk to attackers and malicious code. The flaw was discovered by researchers at Poland's Security Explorations, a ...

Oracle contributes to the problem by not working more closely with the security industry on Java defenses, one security expert said A zero-day Java exploit found for sale in the criminal underground ...

The attacks discovered last week that exploited a previously unknown Java vulnerability were likely launched by the same attackers that previously targeted security firm Bit9 and its customers, ...

Researchers at a threat and vulnerability management firm have replicated an exploit taking advantage of a fresh zero-day vulnerability in Java. A researcher known as Kafeine was among the first to ...

Cybercriminals are using a zero-day Java exploit to infect and take control of victims' computers, a security vendor warned Tuesday. Sophos said the flaw, first reported by security firm FireEye, was ...

With the recent zero-day exploit for Java, we're beating the "update Java now" drum and playing the "disable Java altogether" fife in the SecurityWatch parade. If that wasn't enough, recent news that ...

A new exploit for a recently fixed vulnerability in Java has been added to the Metasploit penetration testing framework, according to vulnerability management firm Rapid7, which owns the open-source ...