Microsoft security expert has warned that Java-based malware attacks are on the rise.
Holly Stewart says that while working on the company’s Security Intelligence Report she noticed an unprecedented amount of Java exploitation late last year.
The spike, she says was caused by attacks on three volnerabilities – all of which are already patched. The problem, says Stewart, is that users simply aren’t updating their machines.
“Java is ubiquitous, and, as was once true with browsers and document readers like Adobe Acrobat, people don’t think to update it,” she says.
“On top of that, Java is a technology that runs in the background to make more visible components work. How do you know if you have Java installed or if it’s running?”
“So, the people that we expect to notice increases in exploitation might have a hard time seeing this particular spectrum of light. Call it Java-blindness,” she says.