An exploit for a recently disclosed Java vulnerability that was previously only available for purchase in the criminal underground has now been rolled into the open source Metasploit exploit ...

If your computer is running Java and you have not updated to the latest version, you may be asking for trouble: A powerful exploit that takes advantage of a newly-disclosed security hole in Java ...

Java the Hutt meets CVE-2012-1723: the Evil Empire strikes back The Java exploit for CVE-2012-1723 is already included in the latest update of the BlackHole exploit kit.

A new exploit for a recently fixed vulnerability in Java has been added to the Metasploit penetration testing framework, according to vulnerability management firm Rapid7, which owns the open ...

With the recent zero-day exploit for Java, we're beating the "update Java now" drum and playing the "disable Java altogether" fife in the SecurityWatch parade. If that wasn't enough, recent news ...

Attackers using the Black Hole exploit kit are targeting the Java CVE-2012-1723 vulnerability.

Researchers at a threat and vulnerability management firm have replicated an exploit taking advantage of a fresh zero-day vulnerability in Java. A researcher known as Kafeine was among the first ...

The new exploit is not very reliable because it tries to overwrite a big chunk of memory in order to disable Java security protections, the FireEye researchers said. Because of this, in some cases ...

The infamous exploit packs Blackhole and Nuclear Pack now feature a new zero-day Java exploit that exploits the Java vulnerability CVE-2013-0422. The latest version of Java 7 Update 10 is affected.

Already the hacker's tool of choice, BlackHole exploitation rates have soared from a success rate of one in 10 to just one in four, due to the inclusion of a recent Java zero day.

The exploit works in all major browsers, including Internet Explorer, Safari, Firefox, Chrome and Opera. Mac users of Lion or Mountain Lion who installed Java after purchase are also vulnerable.

Another previously unpublicized flaw in Java threatens the security of millions of PCs that may still have the application running on it.