I visited a foreign website by someone who posted on a legitimate discussion board (Yahoo Groups) and asked aficianados of the subject discussed to admire their website in Romania dedicated to it. I visited it and also a Russian site. Now I’m paranoid about how slow the start-up on my Windows system is despite Avast. I just want to know if I should be paranoid.
Paranoid question.
If not already, they will as soon as they see samples that try to exploit this vulnerability…
also make sure you have latest java
this is what antivirus companys do 24/7 so leave the worry to them…
if you ned help checking/removing infection, follow the sticky guide in virus and worms forum section
this is what antivirus companys do 24/7 so leave the worry to them....
THANKS! I should have added that I recently asked about an Imation Extender (that I returned to Amazon for a refund), because I kept getting Malware! warnings. So I thought that might add to the Java thing.
Will Avast Stop the Java Problem?
Well it isn’t any AVs task to ‘Stop the Java Problem’ that is Oracles task to close vulnerabilities so they aren’t exploited. It is also the users task to ensure that they have the latest version of JAVA so vulnerabilities are closed. If either of those aren’t followed promptly then avast will be on the lookout for for these exploits as they have in the past.
That said, you really have to ask yourself is JAVA more hassle than it is worth and do you really need it, e.g. do you have to visit sites that absolutely require it (there may be alternative sites), do you have applications that absolutely require it (there may be alternative applications). If you can answer no to both of these then you don’t need it and should seriously consider removing it.
That said, you really have to ask yourself is JAVA more hassle than it is worth and do you really need it, e.g. do you have to visit sites that absolutely require it (there may be alternative sites), do you have applications that absolutely require it (there may be alternative applications). If you can answer no to both of these then you don't need it and should seriously consider removing it.That said, you really have to ask yourself is JAVA more hassle than it is worth and do you really need it, e.g. do you have to visit sites that absolutely require it (there may be alternative sites), do you have applications that absolutely require it (there may be alternative applications). If you can answer no to both of these then you don't need it and should seriously consider removing it.
The problem is that laypeople don’t know what it is. I swear that’s the problem. :o If there’s a No Java for Morons! site or book, I’d appreciate the url or title. Thank you.
You can verify the Java version by going to its test page.
http://www.java.com/en/download/installed.jsp
Hi hilaryp,
At the moment with the zero Java exploit being actively exploited and abused and still not patched I would like to advise you to put the use of Java to an absolute minimum. So use it where there is no existing alternative (like HTML5) and where you cannot go without it. See to it that for these instances you use the latest version of Java and no older versions are available on your system as exploits prefer these older versions to run even when a patched more recent one is available. Disable Java in you standard programs and browser(s). Enable it in one non-standard browser you just use for these instances for when you cannot go without Java in the browser.
If that is not enough, then here you can read all about the “sloppy” Oracle way of patching: http://www.security-explorations.com/en/index.html
link article author = Security Explorations’ founder and CEO, Adam Gowdiak.
"Java is a mess. It's not secure,", says Alien Vault's Jaime Blasco in his article here -> link: http://www.reuters.com/article/2013/01/10/us-java-security-idUSBRE90919X2013011
If this will eventually lead to browser without plug-ins is a thing that only time will tell. Personally I think that for later IE browser versions they will take no chances…
polonus
I know I’m semi Hijacking the thread but I have a question, since I run my Browsers totally sandboxed. (I have the full internet security), will this prevent it at all?, I’ve also got noscript, etc.
Hi Ddm5,
You are welcome, thank you for your question, and I am sure hilaryp won’t mind you asking this in her thread. Yes with NoScript and run inside a sandbox you are secure against recent and even against future Java script holes. As you are familiar with NoScript I would like you to add RequestPolicy add-on as that pair (NS & RP) will give you the best possible and optimal in-browser protection against these issues by also denying all third party requests to where you do not want to venture out. Always have the avast shields up (Webshield and Network Shield) and under all circumstances. If you expect a situation scan the full browser file location additionally with avast at the end of the browser-session to make absolutely sure there are no left-overs/flags,
polonus
My good friend polonus, I have requestpolicy, ghostery, noscript, Avast webrep and Adblock plus. I’ve got noscript on to block near enough everything for new websites that I visit, I’ve got my shields on all the time, with daily quick scans so I’d say I’m good to go?, stupid question on the side, How safe is the “Safezone browser” from the exploit, compared to FF with the plugins mentioned?
Safezone browsing was developed with safe online banking in view for quite another general audience as it comes sort of imposed. The solution you work with non-admin rights could be worked similarly as you know how to “toggle” the protection extensions, like NS, RP, sandbox etc. This solution is also as solid as can be for these Java driven issues,
polonus
Thank you Polonus, hopefully I won’t have any problems with this Java situation, and or any other Virus(s).
Hi Ddm5, hilaryp, YoKenny & DavidR,
Well, we all have to wait until coming Tuesday’s Oracle patch cycle: http://isc.sans.edu/diary/Oracle+Patch+Tuesday+Pre-Release/14920
Link from SANS Internet Storm Centre’s by Stephen Hall (Version: 1) of what is coming patched,
polonus
The problem is that Brazilian online banking depends on Java.
Read the blog (both in English and Portuguese) to get further help.
If Homeland Security is worried about the Java Exploit, perhaps we should be too. This was posted today:
http://news.yahoo.com/oracle-corp-fix-java-security-flaw-shortly-181404730--finance.html
More information about exploit. http://www.securityfocus.com/bid/57246
Okay, so here’s the situation. I made the original post on this thread three days ago. Avast Forums are deluged by the hour with posts from laypeople such as myself; this thread has moved down the food-chain and by all rights should have fallen off the radar. This morning, in the Yahoo Email Inbox associated with my Avast Forums account (and indeed my Avast registration), I received an anonymous bit.ly from someone using an Anglo-Saxon name. It was addressed to me by my first name, the name I use here. It contained nothing other than the bit.ly.
I didn’t open the link. I wrote back to the sender that I would open it if he/she identified him/herself. For a variety of reasons, one coincidental, I was concerned to find the source before the start of the business day. I jotted the URL and entered it by hand on a Macbook. It took me to a Russian site. The problem is that–unless all Russian sites look alike, which I highly doubt–the site resembles the one that caused me enough worry to make the original post.
The “visit” to the Russian site in the week prior to the Java warning was from an email address different from the address associated with my Avast account: in other words, two extremely odd things have happened. First, I receive, at an email address someone unfamiliar with my computer would have no reason to associate with me, a link verbatim the link I received at the other email address. Second, I receive the anonymous, Anglicized bit.ly at the address associated with Avast Forums.
Would someone tell me if I have a reason to be scared? The only conceivable benign ways this could happen would be 1) if the person from Russia who had dogged me for “subtitling” help at the other email address, and whose links I visited to see if this was some poor dude/girl who really needed help–which caused the panic when I learned about the Java issue-- The only conceivable benign way I could get a URL sent to my Avast-Forum-associated email account would be if this person spent an insane amount of time googling, counter-googling, uber-googling the other email address under which I corresponded with him/her. If he/she then came up with my name, he/she could then conceivably come up with my Avast-Forum-associated email address. That would be insane but benign (if he/she is still in Russia). 2) If Avast Forums makes contact information public, then someone could email me…with a verbatim site sent to an unrelated email address…
I’m not saying the sky is falling. I’m saying I don’t know if it is. That’s why I’m posting.
Thank you.