InfoWorld

Java 7 bytecode checker is a real drag

Chronon Systems, which offers technology for recording and playing back Java programs, contends that the bytecode verifier featured in Java 7 is a huge step backward for the Java virtual machine. “The ...
WeLiveSecurity

Java the Hutt meets CVE-2012-1723: the Evil Empire strikes back

In one of my previous posts I described how the CVE-2012-1889 vulnerability (CVE2012-1889: MSXML use-after-free vulnerability) works, but the Java exploitation process is too easy for the bad guys not ...
InfoWorld

Secure your Java apps from end to end, Part 1

Nobody was ever fired for writing insecure code. My slightly reworked version of the popular adage, “Nobody was ever fired for buying IBM,” while not exactly true is accurate enough to be alarming.