PC World

Oracle’s killing a favorite security hole for attackers: the Java browser plug-in

Oracle will retire the Java browser plug-in, frequently the target of Web-based exploits, about a year from now. Remnants, however, will likely linger long after that. “Oracle plans to deprecate the ...
Network World

Sun patches Java Web Start vulnerability

A flaw in the Java Web Start platform could be exploited to allow any Java applet to read, write and run on the affected machine. The flaw is in the way Java applications are handled in the “sandbox.” ...
Macworld

Java security threats: What you need to know

First, the bad news. Once again, Mac users are at risk due to a flaw in Java, similar to the one that enabled the Flashback Trojan. Even worse, there isn’t (yet) a patch to fix that vulnerability. But ...
Computerworld

Java 7 update 10 lets users restrict Java apps in browsers

A recent Java 7 update allows users to completely prevent Java applications from running inside browsers or to restrict how Web-based Java content is handled by the Java Runtime Environment (JRE) ...