Warning

 

Close
Confirm Action

Are you sure you wish to do this?

Cancel Confirm
7916 Online
bravocompany bravocompany bravocompany
brownells brownells
tnvc tnvc tnvc
AR15.COM
bravocompany
My Account
bravocompany bravocompany bravocompany
brownells brownells
tnvc tnvc tnvc
magpul
vortex
palmetto
primaryArms
bravocompany
Holosun
geissele
GS
silencerShop
OSIGHT
springfield
DFC
fightlite
aim
skd
JRH
RS
brownells
Guns
cz
colt
midwest
7916 Online
midwest
vortex
primaryArms
fightlite
JRH
geissele
OSIGHT
GS
RS
magpul
brownells
silencerShop
springfield
colt
palmetto
aim
DFC
skd
cz
Guns
Holosun
bravocompany
Sponsor News Introducing TNVC's NEW and Exclusive Filmed SuperGain (FSG) and Chimera Panoramic Goggle Giveaway!
Site News The People of Virginia VS Grabigial BanBerger | ARFCOM News
1/11/2013 8:19:36 AM EDT
We have been made aware of a serious exploit in Java that is currently being used to install malicious software on PC workstations.
This vulnerability affects all versions of Java, even the latest update, Java 7 Update 10.
As a Common Focus customer all your workstations, except those designated as needing older versions, have Java updated twice a day.
Therefore once a patch is released all powered on workstations will have the update in less than 12 hours.

We ask you to take this exploit serious and let us know if you are experiencing any unusual issues with your computer. Even some national and local news channels have picked up on the major exploit and are covering the story.

SO WHAT CAN YOU DO?

You currently have two options, as current anti-virus definitions are not able to detect the exploit yet.

Option 1

The only way to avoid this vulnerability completely is to remove Java from all workstations, until a patch is released.
We have not taken this step yet, as it could seriously impact your normal business day-to-day operations.

If you would like us to remove Java you MUST RESPOND to this email and power on all workstations in your office.
After receiving a response that you would like Java removed from your office we will issue a command to automatically uninstall all versions of Java.

Once an update is released and is verified as secure, we will than automatically reinstall Java with the latest updates.

Option 2

If you choose not to disable Java, please ask your employees to not go to any unknown websites, or those which display advertising.
The exploit is being used on many popular websites, with the virus being encoded into an ad.


Got that in an e-mail from our tech support guys...just so you know.
1/11/2013 8:28:31 AM EDT
[#1]
" please ask your employees to not go to any unknown websites"


should be standard practice anyways
1/11/2013 8:52:47 AM EDT
[#2]
Quoted:
" please ask your employees to not go to any unknown websites"


should be standard practice anyways


I don't disagree. Apparently its showing up in ads on yahoo, etc.
1/11/2013 1:05:56 PM EDT
[#3]
You could also use a plugin like NoScript for Firefox which disables loading of Java applets (and similar executables) from loading or executing unless you approve.  

I've also heard that the major browsers may or may have recently disabled Java by default so the user has to expressly turn Java on.
1/11/2013 1:21:33 PM EDT
[#4]
MSE popped up on me yesterday saying it was cleaning a threat, and I'm pretty sure it was from this.  Luckily I run Firefox inside a sandbox and nothing bad happened
1/13/2013 5:41:37 PM EDT
[#5]
Quoted:
MSE popped up on me yesterday saying it was cleaning a threat, and I'm pretty sure it was from this.  Luckily I run Firefox inside a sandbox and nothing bad happened


Ahhh, that's a smart way to run the internet...
SAS
CA
LAPG
ar15com
silencerShop
brownells
geissele
LAPG
gray
Faxxon
bravocompany
THBRD
Pro2A
blackhills
springfield
ar15com
ar15com
fightlite
cmmg
primaryArms
RS
palmetto