Cybercriminals are using a zero-day Java exploit to infect and take control of victims' computers, a security vendor warned Tuesday. Sophos said the flaw, first reported by security firm FireEye, was ...

A new exploit for a previously unknown and unpatched Java vulnerability is being actively used by attackers to infect computers with malware, according to researchers from security firm FireEye. “We ...

A new zero-day exploit in multiple versions of Java puts roughly 1 billion users at risk to attackers and malicious code. The flaw was discovered by researchers at Poland's Security Explorations, a ...

Researchers are tracking a new, zero-day Java exploit that is being used in active attacks that may force users to disable the platform. The vulnerability affects most versions of Java Runtime ...

An exploit for a recently disclosed Java vulnerability that was previously only available for purchase in the criminal underground has now been rolled into the open source Metasploit exploit framework ...

Oracle contributes to the problem by not working more closely with the security industry on Java defenses, one security expert said A zero-day Java exploit found for sale in the criminal underground ...

A new exploit for a recently fixed vulnerability in Java has been added to the Metasploit penetration testing framework, according to vulnerability management firm Rapid7, which owns the open-source ...

Miscreants in the cyber underground are selling an exploit for a previously undocumented security hole in Oracle’s Java software that attackers can use to remotely seize control over systems running ...

Just in time for the new year, there's a new Java zero-day exploit out in the wild. It's already being used by criminals to attack your Web browser, and the only defense is to disable Java for ...