First, the bad news. Once again, Mac users are at risk due to a flaw in Java, similar to the one that enabled the Flashback Trojan. Even worse, there isn’t (yet) a patch to fix that vulnerability. But ...

Java’s code-signing requirements have proven to be a bust, security researchers say, and now even longtime developers are losing faith in the programming language. Why would a software company require ...

Oracle has been under pressure to address gaping security vulnerabilities and configuration weaknesses in its Java Runtime Environment, which has become the most widely exploited software platform on ...

Faced with an onslaught of malware attacks that leverage vulnerabilities and design weaknesses in Java, Oracle Corp. recently tweaked things so that Java now warns users about the security risks of ...

Oracle announced enhancements to Java security around signed applets and certificate validation, but experts such as HD Moore want to see more work done to beef up the Java sandbox. Oracle is working ...

Java’s recent security woes are not scaring off developers, who don’t see Java as any more vulnerable than any other platform. “There’s nothing fundamentally wrong with Java,” says Gonzalo Diethelm, ...

Apple today released updated versions of Java 6 for OS X, bringing additional improvements to security, reliability, and compatibility. This is a standard update to Java 6, which is distributed by ...

Early on, Java security focused on resisting executable content threats — security risks caused by malicious or poorly programmed code. In this series’s previous articles, we saw how Java security ...