Outdated Java weak spots are widespread, Websense says

A new Websense report warns that approximately 94 percent of endpoints which run Oracle's Java are vulnerable to at least one exploit, and most of the users usually ignore updates.

The company recently used its threat intelligence network, which monitors billions of Web requests originating from "tens of millions" of endpoint computers protected by its products, to detect the Java versions that are installed on those systems and are available through their Web browsers. The researchers found that the latest version of Java, version 1.7.17, is only in use by a dismal five percent of users, and many versions are months or years out of date — just begging to be exploited.

According to Websense, a Java exploit has been integrated into the Cool Exploit Kit, a Web attack toolkit used by cybercriminals to launch mass drive-by download attacks that infect computers with malware when visiting compromised or malicious websites. Computers, that use an outdated version ov Java are most vulnerable to this exploit.

Read more -here-

• Dropbox breach exposes customer credentials, authentication data
• Google: Passkey authentications top 1 billion across 400 million accounts
• FTC fines Razer for misrepresenting COVID masks as N95s
• FCC fines Verizon, AT&T other major carriers nearly $200 million for sharing customer data
• Federal regulators accuse Amazon executives of deleting messages
• FCC restores net neutrality rules