PC World

Oracle’s killing a favorite security hole for attackers: the Java browser plug-in

Oracle will retire the Java browser plug-in, frequently the target of Web-based exploits, about a year from now. Remnants, however, will likely linger long after that. “Oracle plans to deprecate the ...
NBC News

How to Keep Java in Your Web Browser and Still Be Safe

For the last year or so, Java seems to have spawned a never-ending flow of security bugs, partly because of the software environment's invisibility to end users and partly because of the system access ...
NBC News

More Java Flaws Threaten All Web Browsers

Get unlimited access to ad-free articles and exclusive content. No sooner had Oracle patched a widely reported critical flaw in its cross-platform software environment than another Java zero-day ...
InfoWorld

Most Java-enabled browsers vulnerable to widespread Java exploits, Websense says

Only 5 percent of actively used browser installations have the most up-to-date version of the Java plug-in, the vendor's data shows Most browser installations use outdated versions of the Java plug-in ...
Computerworld

Java 7 update 10 lets users restrict Java apps in browsers

A recent Java 7 update allows users to completely prevent Java applications from running inside browsers or to restrict how Web-based Java content is handled by the Java Runtime Environment (JRE) ...
Dark Reading

Researcher Pokes Holes In Java 7 Security

Is the design of Oracle's Java 7 security sandbox backwards? That charge was leveled by programmer Jerry Jongerius, who last week released a Java Code Signing Failure alert detailing how Java security ...