"The CERT Oracle Secure Coding Standard for Java" book covers the rules for secure coding using Java programming language. InfoQ spoke with book authors on how these rules can help Java developers.

A group of secure-programming experts plans a series of documents that outline the skills coders need to write Web applications that are better able to withstand attacks.

Secure coding: Prevent unauthorized access through path traversal (CWE-22) CWE-22 describes the improper modification of a path name to a restricted directory. How can the vulnerability be addressed?

Amazon Web Services' automated code review helps developers find serious security issues in Java and Python applications.

The features of Java this torrent computer-speak jargon has often been labeled the "Oop" and was doubtless intended with tongue in cheek, it nevertheless ...

Researchers from Foxglove Security have reportedly discovered a remote code execution hole in the widely used Apache Commons library, thanks to the insecure method in which Java unserializes ...

New research from software security specialist Fortify reveals that bugs are far less common in Java compared with commercial C/C++ code ...