VB Migration

Tag: java

  • Malicious ads served on java.com

    If you do need to run plug-ins, make sure you enable click-to-play. Last week, we published a blog previewing the VB2014 paper ‘ Optimized mal-ops. Hack the ad network like a boss ‘ by Bromium researchers Vadim Kotov and Rahul Kashyap. In the paper, they show how purchasing ad space from legitimate ad servers, and…

  • Recently discovered Java vulnerability being added to exploit kit

    Kit ‘patched’ to include latest exploit; users urged to patch their software too. Security researcher and journalist Brian Krebs has found evidence that a recently discovered vulnerability in Java is being added to the ‘BlackHole’ exploit kit. The vulnerability was discovered a few weeks ago and makes use of the Rhino Script Engine to run…

  • Smile, you’re on a botnet!

    Multi-platform Java botnet allows for remote control of webcam and microphone. Researchers have discovered a multi-platform botnet running on the Java Runtime Environment (JRE) that can potentially run on both Windows machines and on Mac s. The botnet, of which only the Windows version has been seen in the wild, installs itself on a victim’s…

  • Giant patch release from Microsoft, Oracle

    Record Patch Tuesday combines with swathe of extra fixes for corporates. It’s a busy week for corporate admins as Microsoft ‘s monthly Patch Tuesday security bulletin, containing a bumper 16 separate alerts covering nearly 50 separate vulnerabilities in the company’s software range, emerged the same day as a similarly sizeable raft of fixes from Oracle…

  • Sun patches serious Java flaws

    Critical vulnerabilities covered by urgent patches. Sun Microsystems has issued a series of patches to fix several vulnerabilities in its popular Java software. Successful exploitation of the flaws could allow remote access to systems and data. The string of flaws affect various versions of Java Runtime Environment ( JRE ), Java Web Start and other…