Having missed the part of corporate traffic through its own cloud computing Websence ThreatSeeker Intelligence Cloud, the company found that about 40 % Java-queries go through interpreter Java 6 Standard Edition, though, that the version of Java 7 Standard Edition was released two years ago. Oracle completed the technical support Java 6SE in April of this year.
The analyst said that some may use the Java SE 6 for compatibility reasons , but most people are in danger of hacking exploits due to obsolete versions of the product. The general trend also indicates that about 81 % of browsers are vulnerable to at least two fresh problems with Java - CVE- 2013 -2473 and CVE- 2013 - 2463 identified in June of this year.
In general, Websence in practice confirms, in general, well-known truth - despite a series of problems with security, Java is still safe in the business environment. The company also said that although the use of Java 7 is at a relatively low level , the trend is to popularize the seventh version is growing. "Java has become the main goal and the main gateway to the penetration of modern computer hackers and vulnerabilities Java instantly replicated and exploits are created for them," - said in Websence.
Adobe Flash also remains a magnet for hackers and fraudsters. Here, the company found that 40% of users do not work with the latest versions of Flash, while 20 % use versions of the age of 2 years or more.
In Oracle said that today is the current version of Java 7 Update 40 , which the company has added a security feature - white lists. This tool allows you to specify which Java- applets can be executed on a computer, while all the others are blocked. Furthermore, they will be blocked for execution in a browser (if plug ) and full Java- application ( if installed on the computer). A new feature called Deployment Rule Set.
In Oracle say that many home users also can now protect themselves by simply blocking the work of a plug Java.
Latest Java Update can be downloaded at:
http://www.oracle.com/technetwork/java/javase/downloads/index.html
No comments:
Post a Comment