Comments on: Unpatched Java Exploit Spotted In-the-Wild

By: lobatt

lobatt — Thu, 24 Jun 2010 19:57:00 +0000

7 Mac & Linux users and counting…

Like or Dislike: 1 2

By: Solo Owl

Solo Owl — Sat, 24 Apr 2010 16:37:24 +0000

Same here.

Like or Dislike: 0 0

By: KFritz

KFritz — Sat, 17 Apr 2010 00:47:35 +0000

I really enjoy the sinister graphics. These (supply your own description)s have real flair. Also, genuinely curious whether the powder is supposed to be speed or coke. Doubt that it’s heroin.

Also notice that Windows 7 is MIA in the product listing.

Like or Dislike: 0 2

By: Matthew Wollenweber

Matthew Wollenweber — Fri, 16 Apr 2010 16:38:48 +0000

@xAdmin
It’s certainly true that a limited account minimizes the damage from malware/attacks. But having some insight into the cleanup process now, we almost always recommend re-imaging the machine once malware is present. The time and skills required to get “confident” the malware didn’t escalate is vastly more than the effort to re-image. Now I find myself oddly ambivalent to a standard security recommendation that I know works – in general.

Like or Dislike: 3 0

By: Matthew Wollenweber

Matthew Wollenweber — Fri, 16 Apr 2010 16:34:56 +0000

There aren’t a lot of details on Java bug. But we recently detected highly obfuscated javascript that wrote more javascript, which wrote a call to Java, which then automatically downloaded and executed a fake-av executable. All this is in the wild. I haven’t confirmed it’s the same issue, but it sounds remarkably similar. It’s written up at: http://www.cyberwart.com/blog/2010/04/14/malware-apr2010-01/

Like or Dislike: 2 0

By: Mark Higdon

Mark Higdon — Thu, 15 Apr 2010 23:13:40 +0000

@Michael above: I stand corrected. For some reason, it takes only a page refresh on my browser to see a just-posted comment. Apparently has nothing to do with JDT.

Like or Dislike: 1 1

By: Phoenix

Phoenix — Thu, 15 Apr 2010 22:43:20 +0000

Actually Microsoft did market a Unix type OS in 1979. Their product was called Xenix which they obtained on a license from AT&T, and which they licensed to computer manufacturers.

Like or Dislike: 2 0

By: James

James — Thu, 15 Apr 2010 20:03:01 +0000

Does update 20 (jre-6u20) fix this issue? Is this confirmed?

Like or Dislike: 0 0

By: Andy Laughton

Andy Laughton — Thu, 15 Apr 2010 19:55:37 +0000

Brian, thank you. I always leave a link to this blog, usually it is a link to the article I am referring to.

To Tom Seaview – maybe m$ will see the light and switch windows to a more Unix-like OS. A bit like MAC OS X perhaps. I run Linux but I’m not going down the “my OS is better than your OS” road. I believe in the right tool for the job. I have never used MAC OS.

Like or Dislike: 0 0

By: prairie_sailor

prairie_sailor — Thu, 15 Apr 2010 18:41:05 +0000

Provided that someone doesn’t recompile their attempted download for the non windows OS of your choice.

Well-loved. Like or Dislike: 8 0