Should Android users worry about Java?

dniblock

The US Government's security warning about Java on computers has been widely reported at this point, but I can seem to find what that means for Android users. After all, doesn't Android inherently use Java? Does the security vulnerability warned about apply to Android devices, and if so, what do you do about it?

Topic: Security
Answer this Question

Answers

2 total
jimlynch
Vote Up (14)

Here's an article that covers the Java security threat:

Java security threat explained
http://www.allvoices.com/contributed-news/13792549-java-security-threat-...

"The US Department of Homeland Security has advised people to temporarily disable the Java software on their personal computers and laptops, so they can avoid being exploited by hackers. The warning came in an advisory issued late Thursday evening.

Computer security experts believe that hackers have found a flaw in Java's coding. Apparently, the flaw creates a gateway for cybercrimes and thefts of various natures.
According to an expert, the malware inside Java has targeted Windows, Linux and UNIX systems. The OS X operating system (Apple) is currently safe, but can come under threat because it is largely similar to UNIX. Java is cross-platform software, used by all operating systems to some extent."

aiden
Vote Up (11)

It's not a problem. Jerry Hildenbrand addressed this concern on Adroidcentral a couple days ago. Essentially, Android doesn't use Java in the browser, which is where the Java vulnerability was before the latest patch from Oracle.

http://www.androidcentral.com/mail-bag-android-affected-java-security-is...

Ask a question

Join Now or Sign In to ask a question.
Financial institutions use many technologies to fight crime, but much of the work comes too late, focusing on suspicious activity, like uncharacteristic charges or money transfers, after it happens.
Dennis Technology Labs says it tested it because of marketing claims for it; Malwarebytes says free version of product is just a clean-up tool.
A new survey of IT security professionals shows that many businesses are barely starting to exploit mobile technology, and some of them may be a mobile security nightmare waiting to happen.
The Russian Ministry of Interior is willing to pay 3.9 million roubles, or around US$111,000, for a method to identify users on the Tor network.
Public certificate authorities (CAs) are warning that as of Nov. 1 they will reject requests for internal SSL server certificates that don't conform to new internal domain naming and IP address conventions designed to safeguard networks.
European data protection authorities still have questions after meeting with Google, Microsoft and Yahoo about the implementation of a recent ruling that gave European citizens the right to be forgotten by search engines.
An iPhone user has filed a lawsuit for invasion of privacy against Apple, about a week after a Chinese state broadcaster raised security concerns about the device's location-tracking functions.
Handling a software flaw can be messy, both for a security researcher who found it and for the company it affects. But a new set of guidelines aims to make that interaction less mysterious and confrontational.
A hacker group calling itself "Anonymous Kenya" has poked holes at the government's cybersecurity preparedness by hacking two official Twitter accounts.
New guidance from Microsoft researchers suggests that users re-use simple passwords and avoid password management services.
randomness