Our Department of Homeland Security sent the warning. I had not heard about it until this morning and thought Members Lounge might be a good medium to spread the word.
Our Department of Homeland Security sent the warning. I had not heard about it until this morning and thought Members Lounge might be a good medium to spread the word.
I'm dubious that Homeland Security would email warnings to people? - it's almost certainly just a scam, similar scam emails from the FBI or CIA are common as well.
I'm dubious that Homeland Security would email warnings to people? - it's almost certainly just a scam, similar scam emails from the FBI or CIA are common as well.
The most recent warning (news article, vendor CVE release, **broken link removed**) is very serious. If you visit a website that contains a malicious Java applet then it can potentially run anything it likes on your computer, including downloading and executing any other malware. The specific vulnerability found is already being used in the wild by criminal "exploit packs" to infect computers.
This is why it is sensible to disable Java in your browser, or at least prompt before running applets. Also make sure you have Java auto-update turned on.
Neither ETO or eBay use Java to the best of my knowledge.
Java applets embedded in websites really aren't used very much these days, the only place I see it now is for specialist functions (e.g. **broken link removed**, this IIR Filter calculator). Nearly everything moved to Flash a while back, and that is now slowly moving to HTML5.
I have Java set to "prompt before running" and I rarely see requests for Java to run (thankfully).
They probably both use Adobe Flash if you have it, but that's a totally different product by a different company.
Javascript is not Java. You are right that most modern websites require Javascript, but that is not at all related to Java or the vulnerabilities discussed earlier in this thread.
Remember that there is both Java and JavaScript and I believe only Java has the issue. **broken link removed**
The only issue that been predominate for me is the fact that Firefox truly follows the implementation rules where variables must be defined before use. This has been the major reason things would work in IE and not Firefox from online calculators to being able to sign on. Unknown if it was Java or JavaScript. My banking isse was fixed by emailing customer service with the error logs. The calculator was fixed with the help of the Firefox developers. They provided the changes necessary to the website for the applets/javascript to work correctly