We wrote several times that when Oracle fixed quickly the security holes in Java, it did not have enough time to address the source of the problem. This can be now seen more clear after big names in the IT industry like Microsoft, Apple and Facebook felt victims to Java exploits.
Microsoft communicated yesterday in their security blog that a certain number of computers were infected using a drive-by download caused, same as in the case of the other companies, by a Java zero-day exploit.
Even if we feel sorry that such an incident took place in the above companies, there is one lesson to be learned from this: anybody can become a victim. When visiting a specially crafted page that makes use of the exploit, it is possible to download and execute malicious content without consent.
If you didn’t uninstall Java until now, it is not too late to do it now.
Make sure you keep your antivirus up to date.
Do not forget that in Microsoft’s case some Macs got infected. We have free protection for Macs.
Leave a reply