Attackers Pounce on Zero-Day Java Exploit
Quote:
Attackers have seized upon a previously unknown security hole in Oracle’s ubiquitous Java software to break into vulnerable systems. So far, the attacks exploiting this weakness have been targeted and not widespread, but it appears that the exploit code is now public and is being folded into more widely-available attack tools such as Metasploit and exploit kits like BlackHole.
Quote:
Initial reports indicated that the exploit code worked against all versions of Internet Explorer, Firefox and Opera, but did not work against Google Chrome. But according to Rapid 7, there is a Metasploit module in development that successfully deploys this exploit against Chrome (on at least Windows XP).
Full article at Krebs on Security
How to turn off Java on your browser - and why you should do it now
How to turn off Java on your browser - and why you should do it now
Quote:
Do you still have Java turned on in your web browser?If your answer is "Yes" or "I'm not sure" then it's time to take action.
Right now, cybercriminals are
aware and
exploiting serious security flaws in Java that could lead to your computer becoming infected by malware.
Read the full article at Sophos - Naked Security