Waratek Java Application Security (JAS) is installed in the Java Virtual Machine to monitor the JVM runtime and detect attacks such as SQL Injection, and block them.

Use Security prompts before running the Java application on Browser Before running any Java applet, a security prompt will appear with a message displaying the risk factors.

The company formed as the result of Herndon, Va.-based application security and integration provider Juldi Inc.s acquisition last August of Java database driver vendor and Boulder, Colo.-based ...

Next, re-enable Java applet support in the Java Preferences application (or wait for your Mac to automatically prompt you the next time you need it). Third, pick a secondary browser that you never ...

Apache Shiro is a Java security framework that provides simple but powerful approach to application security. This article introduces the framework and explains Apache Shiro’s project goals ...

For simple security vulnerabilities and exploit scenarios, the traditional notion that ‘tainted data is unsafe’ may be sufficient. However, as application business logic complexity has grown – driven ...

A popular Java library has a serious vulnerability, discovered over nine months ago, that continues to put thousands of Java applications and servers at risk of remote code execution attacks.

Waratek cites a security testing vendor which evaluated 54,000 applications at 200 companies and found 11 million vulnerabilities. Fixing them is a manual, time-consuming process, the company said.

Azul, the only company 100% focused on Java, today announced an enhancement to Azul Intelligence Cloud, a breakthrough capability in Azul Vulnerability Detec ...

Syft is also able to discern which version of Log4j a Java application contains. The Log4j JAR can be directly included in our project, or it can be hidden away in one of the dependencies we include.

Another security-related change in the new Java updates is the deactivation of the SSL 3.0 protocol by default in response to the POODLE vulnerability discovered in October.

Another security-related change in the new Java updates is the deactivation of the SSL 3.0 protocol by default in response to the POODLE vulnerability discovered in October.