Java has long been a target for malware and cyber attacks, and the latest security vulnerability is yet another reminder of the importance of keeping your software up to date.

According to a recent report from cybersecurity firm Kaspersky, a new malware campaign is targeting users of the popular Java Runtime Environment (JRE). The attacks, which began in November 2017, exploit a vulnerability in an older version of the JRE software (CVE-2017-10076).

The malware, which Kaspersky has dubbed “Joker”, is being used to install a variety of malicious programs on victims’ computers, including cryptocurrency miners, information stealers and remote access tools (RATs).

While the Joker malware is not particularly sophisticated, it is noteworthy for its use of social engineering to trick users into downloading and running the malicious Java program.

The attacks begin with phishing emails that contain a link to a fake website. The website imitates a legitimate Java update page, and prompts the user to download and install a “critical security update”.

Of course, the “update” is actually the Joker malware, and once installed, it gives the attackers full control of the victim’s computer.

This latest Java security vulnerability highlights the importance of keeping your software up to date. As always, we recommend that users install updates as soon as they are available, and be cautious of any emails or websites that prompt you to download and install unknown programs.

If you are unsure about whether an update is legitimate, you can always contact the software vendor directly to confirm. And, of course, always be sure to have a good antivirus program installed and running on your computer to protect against malware and other threats.

Leave a comment

Your email address will not be published. Required fields are marked *