If you already know this informations then surely first thanks from my side, who are not aware of this, then its my kind request you
all to go through this with patience & please do accordingly to avoid risks.
I am here again to tell you about the new virus attack.
Before starting the explanation let me tell you that it is not a small attack as already 20000 websites have already been under attack, so in this post I will be telling you about this virus attack and I will also tell you that which type of technology has been used in making the attack and how you can keep yourself away from the attack.
Is there any software in the world which cannot be infected by VIRUS ??????????????????????
No never & not in future, as per my knowledge none of the software is 100% secured from virus.
Most of the people who work with/use JAVA there is an shock new !!!!!!!!!!!!!!!!!!!!!!!!
That is “Java Installation or Updates itself Spreading Virus !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!”
Most of the US (dev/testers/users/all) use JAVA, JRE, JDK for development, as addon for browsers, to create applets etc etc etc.
One of the rarest technology used by webpages is the Java Applet, now let me tell you that how this attack will work. There are certain compromised sites which are exploited for this attack. Now you will open a webpage then it will automatically download a Frame which will not be visible to you and that Frame will be used to download a JAR file which is nothing but a hidden file which has been named as Java Update. Now after seeing the JAVA update you will definitely download the file and then it means that a self-executable file will be downloaded which is named as host.exe.
After you end up downloading this file the task of the attackers has been accomplished now this EXE file will play its role and then corrupt your system or access any confidential information from your computer. For those who were not able to get the complete idea, I would say that this attack will lead you to download a virus by the name of any useful utility. So beware of marking Yes or No to any of the application on internet it may be a virus attack.
I will keep you updated with any new changes found related to this news topic or any other topic which is related to it and anyhow if you get to know anything related to the news topics mentioned above then please do not hesitate to share it with us, just put it down in the comments section and if we found it genuine then we will be sharing that piece of information with all the other readers on your behalf, so keep searching something useful and then let us know about it. Till then keep reading, take care of yourself and have a nice day!
I hope my article would be helpfull to save our systems or network, so take precautions & be updated yourself before updating your system with java.
for cross verification you can visit to official java website or see below URLs for official announcement from SUN Microsystems:
http://www.java.com/en/download/help/cache_virus.xml
http://www.java.com/en/download/help/virus.xml
http://java.com/en/download/faq/Trojan3.uj.xml
Dont get panicked, be informed. As we already in IT field which is meant for solution for most of problems, take some precautions or follow some TIPS to avoid risks.
- Dont try to install / update JAVA, let ITSG people to get it done. Its is better to transfer the risk to the experts who can handle rigth?
- Disable Applications from Unknown Publishers, as follows or let ITSG people to do it.
It may not be safe to run an applet or application that is digitally signed by an unknown publisher, i.e. a certificate that has not been issued by a trusted Certificate Authority (CA). This certificate assures that the application publisher’s identity has been verified by a trusted third party.
You can change your Java settings from the Java Control Panel so that Java will not run any signed applications from unknown publishers on the web.
Steps:
- Go to Start menu > Control Panel > Java
- In Java Control Panel go to Advanced > Security > General
- Uncheck (deselect) the option, Allow user to grant permissions to content from an untrusted authority to disable applications from unknown publishers to run.
For more info visit: http://www.java.com/en/download/faq/tips.xml
Thanks & Regards
Arun
Arun Kumar's Blogs 