Java - Cyber Security Review

Java - Cyber Security Review

<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-5N6WKKN" height="0" width="0" style="display:none;visibility:hidden"></iframe>

Gregor Samsa: Exploiting Java’s XML Signature Verification

Posted onNovember 2, 2022August 15, 2023

XML Signatures are a typical example of a security protocol invented in the early 2000’s. They suffer from high complexity, a large attack surface and a wealth of configurable features that can weaken or break its security guarantees in surprising Read More …

CERT NZ Alert: Log4j RCE 0-day actively exploited

Posted onDecember 10, 2021

The ubiquitous java logging library, log4j, has an unauthenticated RCE vulnerability if a user-controlled string is logged. This could allow the attacker full control of the affected server. Reports from online users show that this is being actively exploited in Read More …

CVE-2018-3211: Java Usage Tracker Local Elevation of Privilege on Windows

Posted onOctober 17, 2018October 22, 2018

Trend Micro found design flaw/weakness in Java Usage Tracker that can enable hackers to create arbitrary files, inject attacker-specified parameters, and elevate local privileges. In turn, these can be chained and used to escalate privileges in order to access resources Read More …

LATEST ARTICLES

WHY IMMINENT SEC CYBER RULE CHANGES MEANS CYBER SECURITY LEADERSHIP MUST COME FROM THE VERY TOP
By Miguel Clarke, GRC and Cyber Security lead for Armor Defense
Cyber Security Review online – November 2023

WHAT COULD YOU DO IF YOU KNEW HOW EVERY PIECE OF DATA WAS BEING USED?
By Ross Moore, Cyber Security Support Analyst with Passageways
Cyber Security Review online – October 2023

MARKET ENTRY AND COMPETITIVE ANALYSIS: LEVERAGING CHINA PROXIES FOR BUSINESS INSIGHTS
Cyber Security Review online – August 2023

A BRIEF HISTORY OF DATA LOSS PREVENTION
Cyber Security Review online – July 2023

THE 5 ESSENTIAL CYBERSECURITY AWARENESS TRAINING TIPS FOR A MORE SECURE ENVIRONMENT
Cyber Security Review online – June 2023

THE 8-STEP COMPREHENSIVE CHECKLIST FOR APPLICATION SECURITY IN 2023
Cyber Security Review online – April 2023

WHAT TO DO WHEN YOUR EMPLOYEES ARE A CYBER SECURITY RISK
Cyber Security Review online – March 2023

THE NETWORK SECURITY CHALLENGE:
Improving Visibility to Defend Against Cyberthreats
By Kev Eley, Vice President Sales UK and Europe at LogRhythm

KEEPING YOUR MEDIA CONTENT SAFE AND SECURE WITH THESE HELPFUL STEPS

Cyber Security Review online – December 2022

SWEDEN LAUNCHES EUROPE’S MOST ADVANCED HUB FOR AUTOMOTIVE CYBER SECURITY
Research Institute engages ethical hackers and the latest research in cyber technology to combat spiraling threats to connected vehicles

21st CENTURY TECH – TERMINATING THE OLD AND LOOKING TO THE NEW
The research was carried out by technology services business Lifeline IT to mark its 20th anniversary