CSOonline

Java deserialization vulnerabilities explained and how to defend against them

Java provides a means to conveniently serialize data to maintain its integrity as it's sent over a network. Attackers can exploit vulnerabilities in the deserialization process if there aren't ...
CRN

CISA Warns Of SolarWinds Java Exploit

'These types of vulnerabilities are frequent attack vectors,' CISA says in a post online. A government agency is warning about threat actors exploiting a Java deserialization remote code execution ...
CRN

Microsoft Warns Of 'Unprecedented' Rise In Java Exploits

Microsoft warned users about an "unprecedented wave of Java exploitation" in 2010, enabling hackers to use widespread Java vulnerabilities to launch malicious attacks. Thus far in 2010, Microsoft ...
Windows Central

Minecraft mod security exploit leaves players vulnerable to RCE attack

It was already used to steal sensitive information earlier in July. When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. The Minecraft community has ...
CSOonline

SolarWinds fixes Web Help Desk patch bypass for actively exploited flaw — again

‘Third time’s the charm?’ asks a prominent security researcher after what appears to be the same critical Java deserialization flaw gets a third security update. SolarWinds has released a third patch ...