By Steve Johnson
Posted: 01/11/2013 03:53:01 PM PST
Updated: 01/11/2013 04:20:04 PM PST
Millions of computer users were advised Friday to temporarily disable Oracle's (ORCL) Java software because of security weaknesses that make their machines vulnerable to everything from virus-infected websites to "ransomeware," which often locks users out of their computers until they pay the perpetrators.
Oracle said it will issue a patch Tuesday that contains "86 new security vulnerability fixes." It added that "due to the threat posed by a successful attack, Oracle strongly recommends" that customers update Java on their computers with the patch as soon as possible.
Computer users are being advised by security experts to disable Oracle Corp's widely used Java software after a security flaw was discovered in the past day that they say hackers are exploiting to attack computers. Three computer security experts told Reuters on January 10, 2013 that computer users should disable those Java modules to protect themselves from attack. A spokeswoman for Oracle said she could not immediately comment on the matter. REUTERS/Stephen Lam/Files (STEPHEN LAM)
makes it easy for software programs to run on most computers and websites, and it is widely used throughout the world.
In a warning Thursday, the Department of Homeland Security advised people to disable Java in Web browsers, presumably until Oracle is able to correct the problem. Instructions from Oracle on how to disable Java can be found at www.java.com/en/download/help/disable_browser.xml.
Oracle/Sun released a new patch on the 17th but some security people are still suggesting disabling until you find a site that really needs Java.
The instructions for disabling Java are here ----> www.java.com/en/download/help/disable_browser.xml
The patched version of Java is here ----> www.java.com/en/download/inc/windows_upgrade_xpi.jsp?locale=en