A new exploit for a previously unknown and unpatched Java vulnerability is being actively used by attackers to infect computers with malware, according to researchers from security firm FireEye.

A new zero-day exploit in multiple versions of Java puts roughly 1 billion users at risk to attackers and malicious code.

Security researcher discovers new Java exploit, nearly 1 billion PCs and Macs could be at risk.

A new Java exploit has been discovered. While not yet widespread, it is in the wild, works with all major browsers, is potentially cross-platform – and has no available patch.

With the recent zero-day exploit for Java, we're beating the "update Java now" drum and playing the "disable Java altogether" fife in the SecurityWatch parade. If that wasn't enough, recent news ...

Another previously unpublicized flaw in Java threatens the security of millions of PCs that may still have the application running on it.

A new vulnerability was found last week in the latest Java 7 runtime from Oracle. The vulnerability is currently being used by malware developers to exploit systems with runtime installed. Similar ...

If your computer is running Java and you have not updated to the latest version, you may be asking for trouble: A powerful exploit that takes advantage of a newly-disclosed security hole in Java ...

Seculert researchers identified a Java exploit and corresponding attack pages on Red October command and control servers ...

Security researchers warn that cybercriminals have started using Java exploits signed with digital certificates to trick users into allowing the malicious code to run inside browsers.

New analysis of a zero-day Java exploit that surfaced last week indicates that it takes advantage of not one but two previously unknown vulnerabilities in the widely-used software. The latest ...

Over the weekend, researchers at the security software company Trend Micro disclosed a Java exploit that the hacker group Pawn Storm (also known as APT28) has been using to target “a NATO ...