Threat Post

Java’s Losing Security Legacy

Java’s code-signing requirements have proven to be a bust, security researchers say, and now even longtime developers are losing faith in the programming language. Why would a software company require ...
heise online

Java 26 with JVM optimizations, HTTP/3, and finally no Applet API

The current version, OpenJDK 25, was released in the fall of 2025, with many vendors offering Long-Term Support (LTS). Many companies use such releases as a stability anchor for migrations and ...
The Next Web

New vulnerability bypasses Oracle’s attempt to stop malware drive-by-downloads via Java applets

Researchers from the Polish firm Security Explorations have identified a serious vulnerability in the latest version of Java that completely bypasses the new security level Oracle recently introduced ...