Dispatches From The Geeks

News and Announcements from the MCS Systems Group

Java exploits

This is a note for those who manage their own machines. We’re taking care of this for machines that we manage.

If you’re running Java, please make sure you’re at the absolute latest version of either 1.6 or 1.7. Anything earlier is vulnerable. The below stories deal with the details. The simple summary is that if you don’t have a need for Java, disable it.

http://labs.alienvault.com/labs/index.php/2013/new-year-new-java-zeroday/
http://krebsonsecurity.com/2013/01/zero-day-java-exploit-debuts-in-crimeware/
http://malware.dontneedcoffee.com/2013/01/0-day-17u10-spotted-in-while-disabl…

I know this is sounding like scatched record (for those that remember vinyl)
but the hackers have yet again found a way to exploit Java.
If for any reason you were silly enough to re-enable it from the past 20
times you were told it had a hole and should be disabled. It’s now time to
do it again. ;-)

A few stories hitting the wires include:
http://labs.alienvault.com/labs/index.php/2013/new-year-new-java-zeroday/
http://krebsonsecurity.com/2013/01/zero-day-java-exploit-debuts-in-crimeware/
http://malware.dontneedcoffee.com/2013/01/0-day-17u10-spotted-in-while-disabl…

–Gene

About these ads

Written by Craig Stacey

January 15, 2013 at 5:11 pm

Posted in Uncategorized

Follow

Get every new post delivered to your Inbox.

Join 41 other followers

%d bloggers like this: