Homeland Security Warns About Java Malware
A newly-discovered vulnerability in popular Oracle platform Java 7 Update 10 is threatening possibly millions of computers. The threat has even led the Department of Homeland Security to issue a warning, as Oracle “strongly recommends” that users update immediately to their latest version, which addresses the issue.
The exploit takes advantage of a vulnerability left open in Java 7 Update 10, released in October of last year. It works by getting Java users to visit a website with malicious code that takes advantage of a security gap to take control of users’ computers.
The article adds that this vulnerability has been particularly open to “ransomware,” a software that forces users to pay to get control of their computers back from a remote hacker.
Before the latest update was issued, DHS suggested that users disable Java in web browsers, absent any other solution.
Security threats are sometimes exaggerated by security firms to sell more anti-malware software. But this one is verified by several outside sources, and sounds pretty legitimately concerning. What do you think?