(get it in RSS or Atom)

Java hacker boasts of finding two more unpatched holes

Serial Java fault-finder Adam Gowdiak has embarrassed Oracle yet again.

The Polish researcher is publicly bragging about two brand-new vulnerabilities he's found even since Oracle's most recent patch just a week ago.

Yet ANOTHER Java zero-day claimed - but this time you're laughing, right?

Irrepressible cybercrime investigator and reporter Brian Krebs has written about yet another Java zero-day exploit.

This one, it seems, targets an exploitable vulnerability even in Oracle's most recent release, Version 7 Update 11, aka 7u11.