Dark Reading

'Hadooken' Malware Targets Oracle's WebLogic Servers

A threat actor is dropping a cryptominer and distributed denial-of-service (DDoS) malware on Oracle WebLogic Servers using "Hadooken." Researchers at Aqua Nautilus spotted the malware when it hit one ...
TechRepublic

IBM: WebSphere Application Server -vs- Oracle WebLogic

This document briefly covers key benefits of WebSphere Application Server compared to Oracle WebLogic Server. This is your go-to resource for the latest news and tips on the following topics and more, ...
Redmond Magazine

IBM WebSphere App Server Now Available on Azure Linux VMs

Microsoft and IBM earlier this month announced the "availability" of IBM WebSphere Application Server on Azure Linux-based virtual machines. The collaboration enables organizations to run enterprise ...
Bleeping Computer

Severe Deserialization Issues Also Affect .NET, Not Just Java

The .NET ecosystem is affected by a similar flaw that has wreaked havoc among Java apps and developers in 2016. The flaw is in how .NET coding libraries handle deserialization operations, leading to ...
Dark Reading

Why The Java Deserialization Bug Is A Big Deal

A recent blog post by FoxGlove Security that described remotely executable exploits against several major middleware products including WebSphere, WebLogic, and JBoss has focused attention on what ...
PC World

Thousands of Java applications vulnerable to nine-month-old remote code execution exploit

A popular Java library has a serious vulnerability, discovered over nine months ago, that continues to put thousands of Java applications and servers at risk of remote code execution attacks. The flaw ...
ZDNet

Java unserialize remote code execution hole hits Commons Collections, JBoss, WebSphere, WebLogic

Researchers from Foxglove Security have reportedly discovered a remote code execution hole in the widely used Apache Commons library, thanks to the insecure method in which Java unserializes objects, ...