Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Java malware 'was signed with certificates stolen from security vendor

05 Mar 2013   #1
A Guy

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium x64 SP1
 
 
Java malware 'was signed with certificates stolen from security vendor

Quote:
Malware used in a zero-day Java exploit was signed with certificates stolen from a security firm, researchers have found.

The editions of Java targeted by the malware, Java 6 Update 41 and Java 7 Update 15 were released 10 days ago. However, researchers at security firms FireEye and CyberESI have already discovered an attack — known as CVE-2013-1493 — that successfully exploits the two editions of Java, and have informed Oracle of its existence.

Although the exploit in most cases causes a Java virtual machine to crash before executing, if it is successful, it will install a trojan, according to FireEye.
Source

A Guy


My System SpecsSystem Spec
.

05 Mar 2013   #2
Layback Bear

Windows 7 Pro. 64/SP-1
 
 

I get the feeling that nobody is trying to steal anything from anybody. They are just trying to put the big hurt on Oracle.
My System SpecsSystem Spec
05 Mar 2013   #3
marsmimar

Microsoft Community Contributor Award Recipient

 
 

Maybe there's a disgruntled Sun Microsystems employee (who wasn't picked up by Oracle) lurking in the shadows.
My System SpecsSystem Spec
.


05 Mar 2013   #4
Urthboundmisfit

7 Pro x64 SP1, XP SP3 VM
 
 

Oracle released a patch for CVE-2013-1493 yesterday, update to 7u17 & 6u43.

Security Alert CVE-2013-1493
Java SE Downloads
My System SpecsSystem Spec
05 Mar 2013   #5
Layback Bear

Windows 7 Pro. 64/SP-1
 
 

Quote   Quote: Originally Posted by marsmimar View Post
Maybe there's a disgruntled Sun Microsystems employee (who wasn't picked up by Oracle) lurking in the shadows.
Smells like that to me.
My System SpecsSystem Spec
Reply

 Java malware 'was signed with certificates stolen from security vendor




Thread Tools





Similar help and support threads
Thread Forum
'Destover' malware now digitally signed by Sony certificates
Source A Guy
Security News
Malware Now Digitally Signed by Sony Certificates
?Destover? Malware Now Digitally Signed by Sony Certificates (Updated) - Securelist
Security News
Security vendor coalition cleans 43,000 malware infections used for...
Security vendor coalition cleans 43,000 malware infections used for cyberespionage Source A Guy
Security News
Bogus AV program uses 12 stolen digital certificates...
Bogus AV program uses 12 stolen digital certificates to make the malware look legit Source A Guy
Security News
Programming Certificates (Not University) - Java and C++
Just wondering what kind of courses are available for programming without going to university? If not, I am considering going to the OU (Open University).
Chillout Room
Digital Certificates Used by Malware
A link to a site showing digital certificates reported as being used by malware: Digital Certificates Used by Malware
Security News

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 02:52.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App