With its quarterly Critical Patch Update, Oracle has released security fixes for 193 vulnerabilities across all of its products (a good summary can be found here), including the Java zero-day bug (CVE-2015-2590) that is being actively exploited by attackers.
During his talk at the Hack in the Box conference, Alexey Tyurin, Head of the Oracle Security Department at ERPScan, spotlighted several vulnerabilities in Oracle PeopleSoft applications.
On Tuesday Oracle released its quarterly Critical Patch Update, which addressed a total of 169 vulnerabilities across multiple products, including Java SE (Standard Edition).
Oracle is warning users about malware sites actively offering Oracle patches for download.
Encryption is widely recognized as the gold standard for protecting data privacy, but encryption is only as strong as its key management.
Reading our newsletter every Monday will keep you up-to-date with security news.
Receive a daily digest of the latest security news.