Java security weakness... U.S. warns on Java software as security concerns escalate 11 Jan.`13 - The U.S. Department of Homeland Security urged computer users to disable Oracle Corp's Java software, amplifying security experts' prior warnings to hundreds of millions of consumers and businesses that use it to surf the Web. See also: Critical Patch Updates, Security Alerts and Third Party Bulletin
Thanks to MMC over at Political Bullpen... How to Disable Java January 11, 2013 - Java is a handy, cross-platform language that's been mightily abused by hackers. With the discovery of a new Java vulnerability that affects even the most up-to-date version, many experts advise everyone to simply disable Java. Here's how.
Dey workin' onna fix... Oracle Corp to fix Java security flaw "shortly" 12 Jan.`12 - Oracle Corp said it is preparing an update to address a flaw in its widely used Java software after the U.S. Department of Homeland Security urged computer users to disable the program in web browsers because criminal hackers are exploiting a security bug to attack PCs.
Just to be on the safe side - think I'll keep it disabled till the 'all clear' is sounded... Oracle says Java is fixed; feds maintain warning Jan 14,`13 -- Oracle Corp. said Monday it has released a fix for the flaw in its Java software that raised an alarm from the U.S. Department of Homeland Security last week. Even after the patch was issued, the federal agency continued to recommend that users disable Java in their Web browsers.
Antivirals can never solve all problems , blackhats are as good in their job as commercial programmers . I was trying to remove a highjacker from boss 's computer yesterday , superantispyware, avira and malwarebytes couldn't find anything so i googled and there was like 6 updates of removal instructions since July ! I am using scriptblock addon for firefox only and never had an issue with web security (if you don't have it just disable java) , of course there is no such thing as a perfectly safe environment .
There is malware for linux but even if we consider it safe who will teach +55 year old bosses how to use it ?
This isn't malware. This is a polymorphic java trojan. It has 0 effect on linux. Viruses, trojans... these have no affect on linux. Linux uses role based security to do everything. Nothing launches with root permissions... unless you specifically open a terminal and launch it as such... which is a really stupid thing to do. You can make the decision to install something wicked, and provide credentials... but that is how it would have to be done. "malware" is a catchall for anything that "does not behave as you desire" that is not a virus or a trojan. Malware can affect active sessions in a browser. It does not affect the OS. You might get a browser redirect/hijack.. and the ultimate solution to any such nonsense is to open your package manager and click reinstall. You pick a desktop environment that looks similar to windows... and show them that if they want a program they open the package manager and search for a term related to what they want to do, and click the install button. Oh and everything is free and there is no loss of productivity due to viruses. I do it just about every week.
Take a look at this thread. http://www.politicalforum.com/other-off-topic-chat/284479-so-what-all-linux-crap-i-hear-about.html