Browser Exploit Kits Using Built-In Java Feature

Browser Exploit Kits Using Built-In Java Feature 96

Posted by kdawson on Monday January 10, 2011 @12:29PM from the corruptable-cuppa dept.

tsu doh nimh writes "Security experts from several different organizations are tracking an increase in Windows malware compromises via Java, although not from a vulnerability in Windows itself: the threat comes from a feature of Java that prompts the user to download and run a Java applet. Kaspersky said it saw a huge uptick in PCs compromised by Java exploits in December, but that the biggest change was the use of this Java feature for social engineering. Brian Krebs writes about this trend, and looks at two new exploit packs that are powered mainly by Java flaws, including one pack that advertises this feature as an exploit that works on all Java versions."

Browser Exploit Kits Using Built-In Java Feature

This discussion has been archived. No new comments can be posted.

Search 96 Comments Log In/Create an Account

Comments Filter:

First exploit (Score:2, Funny)

by Anonymous Coward writes: on Monday January 10, 2011 @12:31PM (#34824248)

Download and run applet (Y/N)?

Re:Um, What? (Score:5, Funny)

by oneiros27 ( 46144 ) writes: on Monday January 10, 2011 @12:55PM (#34824580) Homepage

It's not Java that's the security problem ... it's the user sitting at the machine.
If you got rid of them, there wouldn't be the problem.

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Browser Exploit Kits Using Built-In Java Feature 96

Browser Exploit Kits Using Built-In Java Feature More Login

Browser Exploit Kits Using Built-In Java Feature

First exploit (Score:2, Funny)

Re:Um, What? (Score:5, Funny)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot