Hackers successfully crack Chrome, Firefox, and Internet Explorer on Windows 8 and Windows 7 at Pwn2Own hacker competition
Chrome OS may have survived a barrage of attacks at Pwnium 3 but Windows and Windows browsers have not been so lucky. At Pwn2Own, a hacker competition sponsored by HP, hackers were able to exploit vulnerabilities in Internet Explorer 10 on Windows 8, Chrome on Windows 7, and Firefox on [...]Read More »
Last week two separate instances of Java zero-day vulnerabilities were reported. One, reported by Security Explorations, was not (is not) being exploited in-the-wild as far as anyone knows. The second one, however, was (is) being exploited in-the-wild to infect users with McRat trojan. Oracle has now issued an update to [...]Read More »
Do you still have Java installed? Then you probably want to know that yet another zero-day Java vulnerability is found, and unlike the two vulnerabilities discovered earlier this week by Security Explorations, this vulnerability is being exploited in-the-wild effectively making it a new zero-day attack aimed at Java users.
According [...]Read More »
This is getting old: New zero-day vulnerabilities found in latest versions of Java, including Java 7 Update 15
Still have Java installed on your computer or enabled in your browser? Then you should know new vulnerabilities have been discovered in the latest versions of Java. Again.
The current latest version of Java is Java 7 Update 15, which includes the most recent patch Oracle issues on February 19. [...]Read More »
Is the Chinese or Eastern Europeans? Maybe someone else? We don’t really know. All we know is there has been a recent string of hacks against multi-million and multi-billion dollar corporations in the past few months. Microsoft is now the latest victim.
According to a blog post, Microsoft “found a [...]Read More »
Is China innocent? New reports claim cyber attacks on Facebook, Twitter, and Apple came from Eastern Europe
After recent cyber attacks on high-profile companies like Facebook, Twitter and then Apple, everyone seemed to be pointing fingers at China. But now reports have surfaced claiming that the attacks on those companies originated from Eastern Europe.
An Eastern European gang, that is determined to sell company secrets like research [...]Read More »
In a statement released yestreday, Apple has disclosed that a number of their employees’ Macs have been compromised by malware through a vulnerability in the Java plug-in for browsers.
The website that was infected and considered responsible for hosing the malware has been identified as ‘iPhoneDevSDK’, an online forum for [...]Read More »
The same time the Wall Street Journal, New York Times and Twitter were attacked, there was a fourth company that also fell victim to a “sophisticated attack.”
Facebook, which is home to more than a billion users worldwide, was hit by a zero-day exploit that installed malware on [...]Read More »
Latest version of Java (7u11) is still vulnerable, Oracle issued an incomplete patch according to experts
Something surprising happened last week. Oracle issued an update (Java 7u11, Java 6u37, Java 5u38, and Java 4u40) in just three days to patch a recently discovered and massively exploited Java vulnerability. And over the weekend, too. As it turns out, Oracle didn’t do a very good job. (Is anyone [...]Read More »
There are two groups in this world that are notoriously quick to react to technological change — the porn industry and hackers. The porn industry is known for pioneering new technology to try to increase revenue. For example, porn websites were one of the first websites that started accepting payments [...]Read More »
You know that latest Java exploit that had the world up in arms, with Firefox and Apple blocking Java and U.S. Department of Homeland Security recommending people disable Java? Yeah, well, Oracle has issued updates to Java to address and plug the exploit.
According to update notes released by Oracle [...]Read More »
Firefox and Apple have blocked Java while U.S. Homeland Security recommends everyone disable it, because of vulnerabilities
Late last year Java was hit with multiple vulnerabilities one after another. Earlier this week another Java exploit was discovered, one that is being actively exploited on the internet by criminals. Due to Java’s seemingly endless security issues, and the fact that the latest exploit is being “massively exploited in [...]Read More »
New Java zero-day exploit hits the internet, is “massively exploited in the wild” — disable Java now!
So you thought Java season was over, eh? Wrong! It is still open season on Java and a brand new, previously unknown bug has been discovered in Java that allows scumbags to install malware on the computers of netizens.
It isn’t entirely clear how this exploit is conducted but it [...]Read More »
Java, Flash, and iTunes are in the “top 10 vulnerabilities” list — Microsoft products are nowhere to be found
Kaspersky Labs, a digital security firm, releases a quarterly “IT Threat Evolution” report. For the Q3 2012 report, one section provides information as to what programs have the most widely spread vulnerabilities. I’m sure you can guess some but may be surprised by others.
The following are the top ten [...]Read More »
New Java vulnerability in Java 5/6/7 bypasses Java security sandbox, affects 1 billion users worldwide
Is it open season on Java? Or has the season for Java never ended? Who knows. I do know, however, that yet another vulnerability has been discovered in Java. This time the vulnerability affects Java 5, Java 6, and Java 7, meaning roughly one billion users around the world are [...]Read More »
New vulnerability in Internet Explorer 7, 8, and 9 allow hackers to remotely control your Windows XP, Vista, and Windows 7 computer
A couple back-to-back Java vulnerabilities hit the cyber waves a few weeks back. The cyber criminal gang that exploited those vulnerabilities seems to have developed a new zero-day attack. This time the attack has Internet Explorer in its crosshairs.
Security researchers are reporting there is a new zero-day vulnerability affecting [...]Read More »
If you are fed up with Java’s security vulnerabilities but are not willing to completely uninstall Java from your computer, a potential middle ground is disabling Java in your browser. This guide shows you how to disable Java in Firefox, Google Chrome, Internet Explorer, and Opera.
Table of Contents
If you are fed up with Java’s security vulnerabilities and want to finally get rid of it, this guide shows you how to uninstall/disable/remove Java on Windows. The following instructions should work for all versions of Windows but is specifically confirmed to work with Windows XP and higher machines.
Note: [...]Read More »
Yesterday Oracle released an update to Java 7 (Java 7u7 update) that fixed nineteen critical vulnerabilities, two of which were exploited by in-the-wild attacks that installed malware on infected machines. It took Oracles four months to patch the just-mentioned vulnerabilities; it took security researchers less than 24 hours to find [...]Read More »
Oracle has released an update to Java 7 for Windows, Mac OS X, and Linux that patches security vulnerabilities. Oracle says the Java 7u7 (v1.7.0_07) update fixes security issues related to CVE-2012-4681 plus two other vulnerabilities.
Update: Looks like this “fix” isn’t a very good fix at all — a [...]Read More »
You know that Java exploit dotTech posted about yesterday? The one that circumvents Java’s security sandbox and lets attackers remotely install malware on infected machines via payloads delivered from booby trapped websites? Yeah, well, a tech security firm is saying it alerted Oracle to that vulnerability four months ago. In [...]Read More »
New Java 7 exploit allows hackers to install malware on Windows, Mac OS X, and Linux; only fix currently is to disable Java
Perhaps due to their high market penetration, or maybe because of poor coding, Adobe Flash and Java have emerged as the two most widely attacked platforms on Windows, Mac OS X, and Linux alike. Indeed Adobe just recently patched a new Flash vulnerability, and now it is Java’s turn.
A [...]Read More »
Most everyone uses ones of these every day and don’t know it. Some that do know either don’t understand it or, even worse, misunderstand it. Yet if anyone ever ran a Java program or a .NET based program they’ve used one.
At its most basic, a Process Virtual Machine (PVM) [...]Read More »