Oracle Security Blog

Oracle Security Update: CVE-2019-2725

On Friday 26th April 2019, Oracle released a new “out of band” security alert for WebLogic Server, affecting versions 10.3.6 and 12.1.3: CVE-2019-2725. “Out of band” updates and alerts are usually critical as they occur outside of Oracle’s usual update/patching schedule. This is because Oracle thinks that the corresponding issue is important and damaging enough that you need to do …

Security

Oracle & SAP security patching failings highlighted by ‘WannaCry’

The recent WannaCry ransomware attack affected many organisations from both the public and private sectors across all continents. It targeted IT systems by encrypting data, then demanded ransom payments in untraceable Bitcoin. May’s attacks were thought to have infected over 230,000 computerised systems in over 150 countries, with the UK’s NHS widely affected and reports of 70,000 devices disrupted including …