Java allows 'open hunting season' for hackers, experts find

Chuckt · Post by **Chuckt** » Fri Jan 11, 2013 11:14 pm

Security professionals urge disabling Java on your PC, saying that the computer language has created an "open hunting season on consumers" for hackers.

http://www.zdnet.com/java-allows-open-h ... 000009701/

Post by **brad** » Sun Jan 13, 2013 5:58 am

Oh man, I'm currently learning Java!

Chuckt · Post by **Chuckt** » Tue Jan 15, 2013 1:30 pm

I remember watching the Screen Savers and they always told us to disable file sharing to make our PC safe.

About two years ago, our computer was broken into and I had to install a new hard drive, install new drivers and new anti-virus software. I spent over nine hours, over two hundred dollars on technical help plus money for a new hard drive and an external case.

We use Java to print labels off the internet at work, online gaming sites that I don't want require java to work and my co-workers are not concerned. I felt back then that Java has significant security risks and all I had to do was visit a Wikipedia link and the trouble began and some of these lesser known microcontroller sites are second on my list.

I was reading about a man in the news who did online banking and Russian hackers stole $50,000 from his account and online banking is not insured like credit cards are in my country. One of the ways to defeat this is to use Keyscrambler which scrambles the keys and outputs gibberish to keyloggers because the program scrambles your keypresses in the kernal. I'm not sure if keyscrambler is compatible with Malwarebytes but there are instances where keyscrambler can get infected but then you will know because it won't operate correctly.

The U.S. Department of Homeland Security urged computer users to disable Oracle Corp's Java software, amplifying security experts' prior warnings to hundreds of millions of consumers and businesses that use it to surf the Web.

http://www.nbcnews.com/technology/techn ... -1B7938755

This is what started it. I wasn't ahead of my time. I think I was just accurately judging what happened while others try to put a happy business face on about Java.

Security experts continue to warn against enabling Java in your web browser despite Oracle issuing a patch for the latest vulnerability in the software - which is being actively exploited.

http://www.ibtimes.co.uk/articles/42377 ... oracle.htm

Post by **brad** » Tue Jan 15, 2013 8:58 pm

Wow, hopefully that patch comes out very soon!

Post by **bitfogav** » Wed Jan 16, 2013 3:28 am

brad wrote:Oh man, I'm currently learning Java!

What Compiler are you using for Java Brad?

Post by **brad** » Wed Jan 16, 2013 10:00 pm

I started using eclipse but it was horrible. Especially the wysiwyg editor. Not to mention really hard to setup.

I then went on to netbeans and it works a treat. Still not as nice to use as visual basic though.

Chuckt · Post by **Chuckt** » Thu Apr 25, 2013 5:47 am

Java Flaw Targeted By Crimeware Toolkit: Patch Now

Don't wait on this update, Java 7 users. Exploit uses bug, patched by Oracle last week, to execute arbitrary code.

Java 7 users: Have you updated to the latest version of the software, released last week by Oracle?

Anyone who isn't using Java 7 update 21, released last Tuesday, is at risk of being exploited via active attacks that target one or more Java browser plug-in vulnerabilities patched by Oracle.

http://www.informationweek.com/security ... /240153530

Brads Electronic Projects Forum