"The CERT Oracle Secure Coding Standard for Java" book covers the rules for secure coding using Java programming language. InfoQ spoke with book authors on how these rules can help Java developers.

Look for vulnerabilities in your code, take advantage of the Java security APIs and packages, and use third-party tools to monitor and log your code for security issues.

Amazon Web Services' automated code review helps developers find serious security issues in Java and Python applications. Written by Liam Tung, Contributing Writer Feb. 16, 2022, 4:21 a.m. PT ...

As with other aspects of cybersecurity, the level of programming language security depends on what we mean by “secure.” It’s true that Java has fewer identified vulnerabilities than some ...

Thinking the problem might be access related, security permissions are incrementally reduced until the code in production works. After a victory dance, the well intended DevOps personnel who ...

‘Extremely bad’ vulnerability found in widely used logging system The Log4Shell exploit gives attackers a simple way to execute code on any vulnerable machine ...

The usage of the nasty vulnerability in the Java logging library Apache Log4j that allowed unauthenticated remote code execution could have kicked off as early as December 1. "Earliest evidence we ...

When building secure Java applications, it's important to make sure there are no plain text passwords anywhere in the code base.

Report finds 45% of AI-generated code had security flaws Java is the worst offender ... failing to defend against cross-site scripting (86%) and log injection (88%). "Our research shows models are ...