By: - Dir. Solutions Marketing

July Java Jamboree

July 15th, 2014

The latest Critical Patch Update (CPU) from Oracle has been released today. Based on the pre-release information, the July 2014 CPU contains 113 new security vulnerability fixes, covering everything from its flagship database and Fusion Middleware to Hyperion and Solaris. [See update below.] Of particular interest to endpoint administrators will be the 20 vulnerabilities in […]



By: - Independent Computer Security Analyst

@gcluley

Java on XP?

July 14th, 2014

Is it still supported, and what should you do about it? Well done to Oracle, which has successfully managed to confuse everyone about what the situation is regarding whether Java (a development platform with a long history of security holes) will continue to be properly supported on Windows XP (an operating system with a long […]



By: - Dir. Solutions Marketing

WinXP and Java: Double the Risk, Double the Fun

July 8th, 2014

Another reason, as if you needed one, to upgrade your WinXP systems: Java 8 – the latest version is 8u5 – has compatibility issues, and Java 7 – the latest version of which is 7u60 – is no longer supported on WinXP. As Oracle has put it: “Users may still continue to use Java 7 […]



By: - Dir. Solutions Marketing

Infosec Haiku

July 6th, 2014

Anata no joho sekyuritei konshu no haiku Java Version 8 Does Not Support WinXP Are You Protected?   ### Notes ### * Thanks to Ms. Etsuko vdH for the translation. * Thanks to everyone who’ve contributed their haikus … watch this space to see if yours is published. * Submit Your Own … if yours […]



By: - Independent Computer Security Analyst

@gcluley

Isn’t It Time Oracle Gave Us Monthly Security Updates for Java?

March 24th, 2014

In some ways, it could be argued that Java is an incredible success. I’m serious. Stop laughing at the back. You see, according to Oracle, Java’s developer, the product is used on over 3 billion different devices worldwide. That *is* impressive. But, for those of us concerned with securing systems and keeping computer data safe, […]



By: - Dir. Solutions Marketing

160 New Viruses Captured Every Minute

February 17th, 2014

Periodically, I take a look at what the good folks at AV-Test.org have to say about the amount of malware in their “zoo.” What I’ve been seeing over the past couple of quarters is pretty shocking. 2013 in Review The amount of new malware seen in 2013 jumped to an average of about 6.9M per […]



By: - Senior Architect

@danteal

Defending Against Java

July 24th, 2013

Java offers enterprises the ability to write code once and run it everywhere.  However, this flexibility comes with a high cost: reduced security on endpoints. It has lately gotten so bad that Java has been nicknamed Just Another Vulnerability Announcement. Oracle has been working to produce updates to Java that addresses these vulnerabilities, but many […]



By: - Dir. Solutions Marketing

Much Ado About Java

June 12th, 2013

So, have you seen the latest about Java? Seems most organizations are still running (really) old versions. And even the current version has what is technically known as a shit-ton of zero-day vulnerabilities. And so Oracle is changing their vulnerability numbering system to accommodate all of them, in addition to taking other steps surrounding Java […]



By: - Forensics and Security Expert

@phenrycissp

No Luck o’ the Irish for IT this St. Patty’s Day

March 12th, 2013

video

IT admins can’t seem to catch a break this year. First, the never ending stream of Java issues that has kept folks on their toes since January. Now they’ve got another busy month of patches ahead of them, with 7 total patches from Microsoft, 4 of which are critical. However, once again the issues outside of Microsoft […]



By: - Forensics and Security Expert

@phenrycissp

Eliminating Java Will Not Solve Your Problem

March 6th, 2013

While many are jumping on the ‘Death to Java’ bandwagon and ranting about turning off Java to eliminate risk, it is important to put the issue in the proper context: the reality of the matter is a Java vulnerability is not the end game for a cyber criminal; it is merely a delivery mechanism in […]


By: - Forensics and Security Expert

@phenrycissp

No Love for IT This Valentine’s Day

February 12th, 2013

video

It’s going to be a rough Valentine’s Day for many IT admins this month. With ongoing issues with Java and 12 bulletins from Microsoft, including 5 critical issues and many restarts, it’s going to be a very disruptive Patch Tuesday. It’s disturbing to note how many different Microsoft platforms are critically affected this month. Everything […]


By: - Dir. Solutions Marketing

Monday Morning Patch Blues

January 15th, 2013

Security Pros sure had a tough Monday. Two issues came to a head: the Java plug-in vulnerability and the Internet Explorer vulnerability. Both are being actively exploited, and both have seen patches rushed out on Monday. Let’s take a quick look at them both. Java 0-Day A new vulnerability in Java browser plug-in used by […]


By: - Forensics and Security Expert

@phenrycissp

Another Light Patch Tuesday from Microsoft this October

October 9th, 2012

video

The light September Patch Tuesday led many to say October would be a horrific Patch Tuesday for IT admins. With seven bulletins and only one critical, those naysayers may want to consider retracting those statements. Microsoft is finally starting to see the fruit of its secure coding initiatives. If you go back to last year […]


By: - Forensics and Security Expert

@phenrycissp

Déjà Vu, Apple Dangerously Out Of Sync With Oracle Patch

September 10th, 2012

Back in March of this year Apple users were left woefully exposed when Apple fell out of sync with Oracle on Java patching. The issue led to some 600,000 Apple users being infected with the Flashback Trojan. The fix for Java had been provided by Oracle back in February and the delay in providing the patch to their users is credited with the rapid high infection rate of Flashback among Apple users.


By: - Forensics and Security Expert

@phenrycissp

In Life There are Two Certainties – Taxes and Patches

April 10th, 2012

video

As we approach April 15, we get to deal with both filing our income taxes and a taxing bunch of patches from Microsoft and others. While the overall number of patches from Microsoft is light, we have 4 critical patches along with two important ones. They impact a wide array of platforms and applications including […]



IT Secured. Success Optimized.™

Contact Lumension | Privacy Policy

Connect & Follow Us

blog.lumension.com