In a press release published on Friday, Telenor warned against using the latest update of Java. The company discloses new information about new attacks against Java in the first day of the new release of the controversial application.
Telenor recommended everyone to uninstall Java immediately, until a new and secure update is released.
In the release note, Telenor wrote that they detected a brand new Java zero-day vulnerability that was used to attack multiple customers. Specifically, they observed successful exploitation against browsers that have Java v1.6 Update 41 and Java v1.7 Update 15 installed.
National Security Authority (NSM) in Norway had previosuly recommended Internet users to disable Java in their browsers after they detected a new serious security hole.
The program is used, among other things, for secure login to online banking and other sites with sensitive personal information in Norway.
Java is a set of several computer software products and specifications from Sun Microsystems, that together provide a system for developing application software and deploying it in a cross-platform computing environment. Java is used in a wide variety of computing platforms from embedded devices and mobile phones. Java applets are also used to provide improved and secure functions while browsing the internet on desktop computers.
Computer specialists in the USA also spoke out against the latest version of Java, saying that it was not secure and that people should disable Java. One specialist said: “Java is a mess. It’s not secure” and went further on to say that Oracle needed to get their act together and sort it out.