Oracle Security Blog

Industry Insights

Improving the Speed of Product Evaluations

Hi there, Oracle Security blog readers; Josh Brickman here again. Today I want to share some of our thoughts about Common Criteria (CC) evaluations...

Read more
Critical Patch Updates

Security Alert CVE-2017-10269 Released

Oracle just released Security Alert CVE-2017-10269 to address a number of vulnerabilities affecting the Jolt Server within Oracle Tuxedo.  The maximum reported...

Read more
Critical Patch Updates

Security Alert CVE-2017-10151 Released

Oracle just released Security Alert CVE-2017-10151 to address a vulnerability affecting Oracle Identity Manager.  This vulnerability has received a CVSS Base...

Read more
Critical Patch Updates

October 2017 Critical Patch Update Released

Oracle today released the October 2017 Critical Patch Update. This Critical Patch Update provides fixes for a wide range of product families including: Oracle...

Read more
Critical Patch Updates

Security Alert CVE-2017-9805 Released

Last week, Equifax identified an Apache Struts 2 vulnerability, CVE-2017-5638, as having been exploited in a significant security incident. Oracle distributed...

Read more
Critical Patch Updates

July 2017 Critical Patch Update Released

Oracle today released the July 2017 Critical Patch Update. This Critical Patch Update provides fixes for a wide range of product families including: Oracle...

Read more
Oracle Security

Securing the Oracle Cloud

Technology safeguards, fewer risks, and unparalleled security motivate CIOs to embrace cloud computing. If one thing is constant in the IT world, it's change....

Read more
Security Updates

Security Alert CVE-2017-3629 Released

Oracle just released Security Alert CVE-2017-3629 to address three vulnerabilities affecting Oracle Solaris: - Vulnerability CVE-2017-3629 affects Oracle...

Read more
Oracle Security

Oracle's Security Fixing Practices

In a previous blog entry, we discussed how Oracle customers should take advantage of Oracle's ongoing security assurance effort in order to help preserve their...

Read more
Oracle Security

Take Advantage of Oracle Software Security Assurance

In a previous blog entry (What is Assurance and Why Does It Matter?), Mary Ann Davidson explains the importance of Security Assurance and introduces Oracle Softw...

Read more
Critical Patch Updates

April 2017 Critical Patch Update Released

Oracle today released the April 2017 Critical Patch Update. This Critical Patch Update provides fixes for a wide range of product families including: Oracle...

Read more
Critical Patch Updates

January 2017 Critical Patch Update Released

Oracle today released the January 2017 Critical Patch Update. This Critical Patch Update provides fixes for a wide range of product families including: Oracle...

Read more
Industry Insights

What Is Assurance and Why Does It Matter?

If you are an old security hand, you can skip reading this. If you think "assurance" is something you pay for so your repair bills are covered if someone hits...

Read more
Security Trends

The State of Open Source Security

Open source components have played a growing role in software development (commercial and in-house development). The traditional role of a developer has evolved...

Read more
Industry Insights

Common Criteria and the Future of Security Evaluations

For years, I (and many others) have recommended that customers demand more of their information technology suppliers in terms of security assurance – that is,...

Read more
Critical Patch Updates

October 2016 Critical Patch Update Released

Oracle today released the October 2016 Critical Patch Update. This Critical Patch Update provides fixes for a wide range of product families including: Oracle...

Read more
Industry Insights

Unmasking Hackers with User Behavior Analytics

Many people keep sensitive documents in cloud storage services and the latest breach shows that hackers are focusing on online storage cloud services more...

Read more
Critical Patch Updates

July 2016 Critical Patch Update Released

Oracle today released the July 2016 Critical Patch Update. This Critical Patch Update provides fixes for a wide range of product families including: Oracle...

Read more
Product News

Why Monitoring Alone is Not Enough in Cloud Security

Comprehensive threat intelligence is key for ensuring accuracy and maximize effectiveness of automated security solutions. Monitoring alone is not enough to...

Read more
Product News

Can a CASB Protect You From the Treacherous 12? - Part 4: CASBs and the Treacherous 7 through 12

Welcome to the fourth in a four-part series on how Cloud Access Security Brokers (CASBs) can help protect your organization from the top twelve threats to cloud...

Read more
Critical Patch Updates

April 2016 Critical Patch Update Released

Oracle today released the April 2016 Critical Patch Update. This Critical Patch Update provides fixes for a wide range of product families including: Oracle...

Read more
Product News

Can a CASB Help Protect You From the Treacherous 12? - Part 3: CASBs and the Treacherous 1 through 6

Welcome to the third in a four-part series on how Cloud Access Security Brokers (CASBs) can help protect your organization from the top twelve threats to cloud...

Read more
Industry Insights

Data Breaches in Cloud-Based Enterprises

The Cloud Enterprise Is at Risk As the chart below shows, every major industry vertical has been targeted, with retail, finance, and healthcare being the...

Read more
Product News

Can a CASB Protect You From the Treacherous 12? - Part 2: CASBs and Threat Protection

Welcome to the second in a four-part series on how Cloud Access Security Brokers (CASBs) can help protect your organization from the top twelve threats to cloud...

Read more
Product News

Can a CASB Protect You From the Treacherous 12? - Part 1: CASB 101

Welcome to the first in a four-part series on how Cloud Access Security Brokers (CASBs) can help protect your organization from the top twelve threats to cloud...

Read more
Security Updates

Security Alert CVE-2016-0636 Released

Oracle released Security Alert CVE-2016-0636 to address a vulnerability affecting Java SE in web browsers on desktops. This vulnerability has received a CVSS...

Read more
Security Updates

Security Alert CVE-2016-0603 Released

Oracle just released Security Alert CVE-2016-0603 to address a vulnerability that can be exploited when installing Java 6, 7 or 8 on the Windows platform. This...

Read more
Critical Patch Updates

January 2016 Critical Patch Update Released

Oracle today released the January 2016 Critical Patch Update. With this Critical Patch Update release, the Critical Patch Update program enters its 11th year...

Read more
Industry Insights

FIPS: The Crypto "Catch 22"

Hello, Oracle blog reader! My name is Joshua Brickman and I run Oracle's Security Evaluations team (SECEVAL). At SECEVAL we are charged with shepherding certain...

Read more
 

Oracle Security Solutions Home

 

About this blog

 

Contact

Oracle

Integrated Cloud Applications & Platform Services