Monday, August 27, 2012














A Zero day Java7 exploit is putting Windows, Linux, and MAC users at risk right NOW, regardless of which browser is used! Computer World writes:

"The unpatched bug can be exploited through any browser running on any operating system, from Windows and Linux to OS X, that has Java installed, said Tod Beardsley, the engineering manager for Metasploit, the open-source penetration testing framework used by both legitimate researchers and criminal hackers."

Apparently the bug is not in Java 6, and security experts are advising users to disable JAVA immediately. Again, from Computer World:

"Mac owners can disable the Java plug-in from within their browsers, or remove Java 7 from their machines. To do the latter, select "Go to Folder" from the Finder's "Go" menu, enter "/Library/Java/JavaVirtualMachines/" and drag the file "1.7.0.jdk" into the Trash"

Windows users, can either un-install JAVA, or disable it via your browser. For I.E. browser users you cango to Tools\Internet Options\Security\Internet\ and disable active scripting.

Even having done this, try to avoid browsing sites you've never been on before, and hopefully you won't suffer a drive-by JAVA attack.

No comments:

Post a Comment