Any risk from Java if you use a Mac?

jlister

Is there a risk to Mac users from Java 7, or does it only apply to Windows PCs?

Tags: apple, Java 7, mac
Topic: Security
Answer this Question

Answers

3 total
kreiley
Vote Up (25)

While the most recently discovered flaws an Java 7 may have been patched, there is still a general warning against using Java by the DHS. And yes, those patched vulnerabilities could be used against Mac systems as well as Windows. Remember the Flashback worm? Well, over 600,000 Mac users who bought into the "Macs don't get viruses" meme learned that they had been living in a fools paradise when their machines were infected. It is also worth mentioning that Apple hasn't provided Java for OS X since 6. Frankly, there is no compelling reason to continue using Java, and just because the most current round (of many) vulnerabilities has been patched, doesn't mean that they all have been. 

Christopher Nerney
Vote Up (22)

As long as there's a flaw to be exploited, I'd say yes. But Oracle reportedly has released an update that fixes the exploit about which the U.S. Department of Homeland Security had issued a warning.

 

 

jimlynch
Vote Up (20)

Here's how you can disable Java in Safari.

How to disable the Java web plug-in in Safari
http://support.apple.com/kb/HT5241?viewlocale=en_US&locale=en_US

"To disable the Java web plug-in in Safari, follow these steps:

In Safari, choose Safari > Preferences or press Command-comma (⌘-,)
Click "Security".
Uncheck (deselect) "Enable Java".
Close the Safari preferences window."

Ask a question

Join Now or Sign In to ask a question.
A malware program that targets Hong Kong activists using Apple devices has trademarks of being developed by a nation-state, possibly China, according to a security company.
Google has tripled its maximum reward for finding flaws in its software to US$15,000, a figure the company hopes will deter independent researchers from selling their information on shady markets.
The "Shellshock" flaw has the potential to pose a risk to the payments industry, but doesn't appear to have caused any problems yet, an official with a consortium run by major credit card companies warned on Tuesday.
The number of attempts by hackers to compromise computers through the Shellshock vulnerability is rising, but companies have options for defending against attackers.
The year since our previous Global Information Security Survey won't go down as one of the better years for information security. In fact, it may go down as one of the most grueling.
Small and medium-size U.S. companies should band together on cybersecurity systems as a way to pool limited resources against increasingly sophisticated attackers, the former director of the U.S. National Security Agency said Tuesday.
For the second time in as many weeks, a senior U.S. government official has warned that widespread use of encryption could harm investigations.
Four alleged members of an international computer hacking ring face charges in the U.S. of breaking into the computer networks of the U.S. Army and several tech companies and stealing several software packages, including programs used to train Army helicopter pilots.
A number of antivirus products caught all the malware the testing lab threw at it. But only a few were free.
Many banks with less than $50 billion in assets have a problem that payment systems like Apple Pay will make even more attractive to exploit, a team of security researchers says.

White Papers & Webcasts

See more White Papers | Webcasts