Jan 12 - US Department of Homeland Security Calls On Computer Users To Disable Java
 

http://www.forbes.com/sites/eliseackerman/2013/01/11/us-department-of-homeland-security-calls-on-computer-users-to-disable-java/


[IMG]http://cdn-static.zdnet.com/i/story/61/44/012641/igen-facebook-lockdown-guide-zaw2.png[/IMG]
[quote]
Concerns about the susceptibility of the Java programming language to cyberattacks culminated Thursday night, with a warning posted on the Department of Homeland Security’s Computer Emergency Readiness Team (US-Cert) calling on the public to temporarily disable Java on their personal computers.

The call came in response to the discovery of a new vulernability that lets an attacker execute code on a PC running Java. The vulnerability is reportedly already being used in “exploit kits” which are pre-packaged, for-sale tool kits that can be used to commit online crimes such as stealing someone’s identity.

“We are currently unaware of a practical solution to this problem,” the posting said. Oracle, which acquired Java when it bought Sun Microsystems in 2010, has not yet issued a security patch for this particular vulnerability.

Security experts have been advising people to disable Java for some time, since it is so commonly targeted by cyber criminals. Last fall, Apple won praise for a Mac update that removed a Java plugin from all Mac-compatible web browsers. “I think that the way they’ve handled Java in the browser was their biggest win in 2012,” Charlie Miller, a former NSA employee turned noted Apple hacker, told Ars Technica.

On Friday, Mozilla announced it was blocking all recent Java plugins from automatically loading in the browser unless a user specifically “clicks to play.”

Turning off Java can be done in a few simple steps, depending on which browsers you use.

Mac owners who use Google Chrome can go to Chrome://plugins and verify that the Java plugin is disabled. If you use Safari, you can choose Safari>Preferences, click security and uncheck the box that says “enable Java.” If you use Firefox, you can choose Tools>Add-ons, search “My add-ons” and disable any Java plugin.

Windows users can find a good guide to turning off Java on KrebsonSecurity.com.
[/quote]

......power move:angry27:

b.s........ u heard it here first!

i just learned how to program with java too :kobemad:

JAVA is some bullsh*t though. Alot of exploits for it. Drive bys and sh*t.

[B]"US Department of [COLOR="Red"]Homeland[/COLOR]"

how nice of them....:tedsmh:

on another note...fu*k em...:blunt:[/B]

[IMG]http://4.bp.blogspot.com/-M5H9h7mIB9s/To9IOyrageI/AAAAAAAAHbs/8_mewcz0Jtw/s1600/white-apple-logo-wallpaper.jpg[/IMG]

:sascmonson:

You fu*king with the wrong mahfu*kas if you worry about this sh*t lol

this was the topic of discussion in my computer forensics and perimeter defense class thursday and yesterday...

[quote=<<InphDigi>>;25839787]this was the topic of discussion in my computer forensics and perimeter defense class thursday and yesterday...[/quote]

:obamahmm:

Nah i'll keep my java on thank you :smug:

While the government has a big brother mentality, not EVERYTHING they do is to take your rights away

inb4dumbfu*ktinfoilbrigade

im not disabling sh*t :imout:

The government spends hundreds of billions of dollars on industries dedicated to shaping our attitudes and beliefs. Across the board academics in all fields agree to this; it is so deeply embedded within us.

Oracle releases software update to fix Java vulnerability.

The update, which is available on Oracle's Web site, fixes a critical vulnerability in Oracle's Java 7 that could allow a remote, unauthenticated attacker to execute arbitrary code. The attack can be induced if someone visits a Web site that's been set up with malicious code to take advantage of the hole.

[url=http://m.cnet.com/news/oracle-releases-software-update-to-fix-java-vulnerability/57563730]Oracle releases software update to fix Java vulnerability - CNET Mobile[/url]

they want the users java disabled so they can spy on them even more