Java – A Huge Security Problem in Your Computer

Many of the attacks on a computer system involves exploiting weaknesses in installed software. Everything from the operating system, Web browsers, office software, and software that just connects to the Internet, may have weaknesses that hackers can exploit to install malicious software. Most of the time malicious software that targets a particular application exploit is limited to a particular type of computer, such as Windows or Apple. This is why it is always important to ensure you keep the applications installed on your computer updated with the latest patches.

There is one piece of software that is exploited on a regular basis, and the exploits aren’t limited to a particular system. This software is designed to work on many different systems, so it is an extremely easy target for hackers. The software is Java.


Java - A Huge Security Problem in Your Computer

Why is Java a Security Problem?

The biggest security issue with Java, as I mentioned above, is that it is system-independent. Java can be installed on everything from Windows, Apple to Unix systems. Java is also used on hardware devices such as HDTVs and blu-ray players. Of course, the biggest security issue is when Java is installed on a computer system.

Unlimited data backup with BackBlaze

Note:

It is important before continuing to understand that this post is about Java and not Javascript. Javascript is not Java, as they are two entirely different coding languages.

The fact that Java can be run on many different systems means that someone can develop a single piece of malicious software that can be executed on any system. They don’t need to develop separate applications, since as long as Java is installed, their application will run.

Another security issue is that fact that Java is a complex language. This complexity has added to the number of security vulnerabilities, as it is with any complex application. While Oracle releases new versions and patches, they aren’t nearly as quick to release the updates to match the number of exploits.

How to Protect Your System

The best defense for protecting your system from hackers exploiting Java is to simply uninstall Java from your system. Most people probably don’t need Java installed, so removing the software won’t have any impact on you using your computer.

For those that need to use Java because of a particular application, then you there are a few things you can do to mitigate any issues that you can experience.

Keep Java Updated

Java updates are released on a regular basis, so it is important to ensure you install all the latest updates. Most of the updates are released to fix security issues that have been found.

The latest Windows Java versions now provide automatic updates, so you can click the Java icon in the Control Panel and verify you are at the latest version of Java.

Java on Apple Mac computers are updated by Apple since Apple distributes its own release of Java on their systems. Java on a Mac computer is updated when the OS is updated, so as long as you update the OS, Java should be updated as well.

Disable the Browser Plugin

Besides keeping Java updated, you should also disable the Java plugin from all Web browsers you have installed on your system. This plugin provides a way for hackers to access Java on your system just by you visiting a Web site with malicious code. Very few Web sites use Java anymore, so disabling the plugin won’t impact viewing Web sites.

The newest version of Java allows you to disable the Java plugin. For older versions, there are many resources online that explain how you can disable the plugin from various Web browsers.

Java is probably the most exploited software that is installed on many systems. The fact that it can run on many different systems makes it an easy target for hackers. The best advice is that if you don’t need Java installed, uninstall it.

PG

About Paul Salmon

Paul Salmon is the founder of Technically Easy. He is a an experienced PC user, and enjoys solving computer-related problems that he encounters on a regular basis.

Facebook | Twitter | Google+

Get Free Email Updates

Subscribe to receive new content directly to your inbox for free. Your e-mail address will never be shared at any time.

Security Tips

4 Comments

  1. Posted September 5, 2013 at 12:40 am | Permalink

    It would be a good idea to disable Java but, then you will have to lose plenty of web features. Hope Oracle does something about this soon.

    • Posted September 5, 2013 at 3:08 pm | Permalink

      In reality, very few websites use Java anyways, so disabling it won’t effect websites. The one issue is for businesses as some applications may use Java.

  2. Posted June 13, 2013 at 10:54 am | Permalink

    Thanks Paul,

    You made it sound so simple. It’s good to know I really don’t need is, so I will uninstall Java. I have not uninstalled because I thought I really needed it. You’ve explained the alternatives. Thank you.

    Raena Lynn

  3. Posted June 12, 2013 at 8:49 am | Permalink

    I thought about disabling Java entirely on my system the first time I read about this exploit. However Java is currently essential. (I use Adobe Creative software on my Mac system, for example.). There is only one compromise that I could come up with. Before I went online, I could disable Java system wide thru the Java Preferences and then enable it when I wish to use Photoshop, off line, for example. But this compromise, as with all compromises, are hassles, at best.

Post a Comment

Your email is never published nor shared. Required fields are marked *

*
*

You may use these HTML tags and attributes <a href="" title="" rel=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Subscribe without commenting