Why every CISO should demand a comprehensive Software Bill of Materials (SBOM)

A SBOM must be treated as a living document, updated with every code change, new release, or patch. Threat actors won't ...
The Hacker News

From Log4j to IIS, China's Hackers Turn Legacy Bugs into Global Espionage Tools

China-linked hackers exploited multiple CVEs in April 2025 to target global entities with advanced persistence.
InfoQ

Java News Roundup: New Jakarta AI Specification, GlassFish, Spring RCs, Infinispan 16, Open Liberty

This week's Java roundup for November 3rd, 2025, features news highlighting: a new Jakarta AI specification; the fourteenth ...
InfoQ

Redis Critical Remote Code Execution Vulnerability Discovered After 13 Years

This critical (CVSS 10.0) use-after-free (UAF) vulnerability in Lua scripting could allow authenticated attackers to execute ...