DHS says Java software dangerous


The U.S. Department of Homeland Security warned Thursday that a flaw in Java software is so dangerous that people should stop using it. “This vulnerability is being attacked in the wild, and is reported to be incorporated into exploit kits,” the department’s computer emergency readiness team said in a notice on its website. “We are currently unaware of a practical solution to this problem.”

The recommended solution is to disable Java, which typically runs as a plug-in program in web browsers. Java is popular because it lets developers create websites in code that can be accessed regardless of a computer’s operating system.

Hackers using booby-trapped websites can exploit the Java vulnerability to execute code on computers, security firms say.