ZDNet

Java zero-day malware 'was signed with certificates stolen from security vendor'

Malware used in a zero-day Java exploit was signed with certificates stolen from a security firm, researchers have found. The editions of Java targeted by the malware, Java 6 Update 41 and Java 7 ...
InfoWorld

Java 7 Update 25 fixes 40 security issues, enables certificate revocation checking

Oracle addressed 40 security issues in Java and enabled online certificate revocation checking by default in its scheduled critical patch update for Java on Tuesday. Thirty-four vulnerabilities ...