TORONTO – Computer security experts are warning about a new vulnerability involving the ubiquitous Java plug-in, which allows programs to be run inside a web browser.
Oracle, the creator of Java, has long been criticized for allowing security exploits in its software to go unchecked.
Get breaking National news
The latest vulnerability, which has been circulating since last week, could allow hackers to gain access to a user’s computer with a so-called “drive-by download.”
While surfing the web, a user may be prompted to accept an legitimate-looking download, which triggers an attack. Hackers can sometimes also force a user to download a damaging file invisibly without their knowledge.
Experts suggest users should uninstall Java unless they find it absolutely necessary based on their regular web browsing habits.
If some of their most-visited websites require Java in order to operate properly, users can turn it on as needed and then disable it the rest of the time.
- Canadians involved in tourist bus crash in Dominican Republic, embassy says
- Canadians stuck in Middle East say cities ‘very tense’ as Iran conflict escalates
- Alberta mulls ditching time switch — again — as B.C. moves to permanent daylight
- In London, Poilievre pitches new UK, Australia, New Zealand partnership
-
![]()
Missiles strike Bahrain, UAE as Iran retaliates for US-Israel assault -
![]()
BC’s Iranian community raising concerns for loved ones amid celebrations over strikes in Iran -
![]()
What’s next: Iran’s uncertain future after Ayatollah’s death -
![]()
Canada and India reset relationship despite claims of continued interference
Comments
Want to discuss? Please read our Commenting Policy first.