InfoWorld

Secure your Java apps from end to end, Part 1

Nobody was ever fired for writing insecure code. My slightly reworked version of the popular adage, “Nobody was ever fired for buying IBM,” while not exactly true is accurate enough to be alarming.
WeLiveSecurity

Java the Hutt meets CVE-2012-1723: the Evil Empire strikes back

In one of my previous posts I described how the CVE-2012-1889 vulnerability (CVE2012-1889: MSXML use-after-free vulnerability) works, but the Java exploitation process is too easy for the bad guys not ...
Threat Post

Black Hole Exploit Kit Targeting Java CVE-2012-1723 Flaw

A new fork of the Black Hole exploit kit is making quick work of a recently patched Java vulnerability and security researchers say that the attackers are registering new sites quickly to exploit ...