IE and Java exploitable. Still.

Status
Not open for further replies.
strawman

strawman

http://arstechnica.com/security/2013/07/darkleech-infects-40k-apache-site-addresses/

A significant security threat emerged in Apache, which is the software that serves over half the websites in the world. Over 40,000 websites have been compromised in the past nine months.

The crackers detect the browser you're running, and whether you have java installed. If you're using IE or Java that haven't been updated in the last few months, the website redirects you automatically to the cracker's website, where malware/trojans/viruses are installed for a variety of purposes.

Thus, once again, confirming what geeks and nerds already know: IE and Java are bad news and to be avoided if possible.
 
Tress

Tress

I have a hard time avoiding Java, though. Is there a serviceable replacement, or do I have to go without the different websites and services that use it?
 
strawman

strawman

Tress said:
I have a hard time avoiding Java, though. Is there a serviceable replacement, or do I have to go without the different websites and services that use it?
Click to expand...
Just update java every time there's an update available. The most recent version of java doesn't have the hole this particular exploit looks for.

I believe IE's latest security fix resolves the problem as well.

But new exploits will be found as time goes on - just remember to keep them up to date and you should have few issues. The real problem is so few actually keep their software up to date. Well, I guess that's secondary to the real problem of MS and Sun introducing the exploits into the software in the first place...
 
Ravenpoe

Ravenpoe

Maybe this is my nerd bias speaking, but I think the majority of people that use IE don't update it. The majority of people who use IE are people like my mom, who call me to ask if I've heard of Bonzi Buddy and to tell me she just downloaded five of them.
 
Bowielee

Bowielee

Ravenpoe said:
Maybe this is my nerd bias speaking, but I think the majority of people that use IE don't update it. The majority of people who use IE are people like my mom, who call me to ask if I've heard of Bonzi Buddy and to tell me she just downloaded five of them.
Click to expand...
lol, Bonzai Buddy... that takes me back to circa 1999.

For the record, the only reason that IE and Java are as exploited as they are is because they are the most popular software, not because they're particularly exploitable.
 
Status
Not open for further replies.
Top