Attack Code for Oracle’s Java Cloud Service Released

Grazed from TalkinCloud. Author: Dan Kobialka.

Researchers claimed earlier this week that they found 30 security flaws in Oracle’s cloud services. Security Explorations, a Polish security and vulnerability research company, published details about security defects it reportedly discovered in Oracle’s Java Cloud Service. In addition, Security Explorations released an attack code that it said would allow hackers to remotely attack apps hosted in Oracle’s US and EMEA data centers.

Security Explorations details its findings in two reports that are available for download here. A Security Explorations security issue disclosure timeline showed that Oracle was notified about 28 security issues on January 31, and another two issues on February 2. Adam Gowdiak, the CEO and founder of Security Explorations, told PCWorld that he decided to publish his company’s findings because Oracle did not immediately respond to the security issues…

"Two months after the initial report, Oracle has not provided information regarding successful resolution of the reported vulnerabilities in their commercial cloud data centers,” Gowdiak added…

Read more from the source @ http://talkincloud.com/cloud-computing-security/040414/attack-code-oracles-java-cloud-service-released

Subscribe to the CloudCow bi-monthly newsletter @ http://eepurl.com/smZeb