Getty Images reader comments 37 with 32 posters participating Share this story Organizations using newer versions of Oracle’s Java framework woke up on Wednesday to a disquieting advisory: A critical vulnerability can make it easy for adversaries to forge TLS certificates and signatures, two-factor authentication messages, and authorization credentials generated by a range of widely… Read More »
reader comments 27 with 19 posters participating Share this story Attackers are targeting a recently patched Oracle WebLogic vulnerability that allows them to execute code of their choice, including malware that makes servers part of a botnet that steals passwords and other sensitive information. WebLogic is a Java enterprise application that supports a variety of… Read More »
reader comments 22 with 16 posters participating Share this story Hackers are scanning the Internet for machines that have yet to patch a recently disclosed flaw that force Oracle’s WebLogic server to execute malicious code, a researcher warned Wednesday night. Johannes Ullrich, dean of research at the SANS Technology Institute, said his organization’s honeypots had… Read More »