EMERGENCY NOTIFICATION: JAVA EXPLOIT 1/14 STEPS TO TAKE

ACTION REQUIRED:
Please update all internet browsers and operating systems today and for the remainder of the week to insure you have the latest patch for Java on your systems.

If you have developers, they can download the Java patch at:  http://www.oracle.com/technetwork/java/javase/downloads/index.html 

BACKGROUND:
The Java flaw announced over the weekend has been fixed according to Oracle, the current owner of Java.
The patch should be released later today but until you have the patch, you are not safe.

This fix followed warnings from the Department of Homeland Security which asked computer users to disable the software completely.

Please note, although Oracle indicated this bug only applied to Java 7, which is the latest release, because you cannot be certain the flaw is only in that version, please update everything.

HOW IT WORKED:
The vulnerability allowed attackers to execute code without your knowledge.  This code would allow them to potentially drive you to other infected sites behind the scenes, steal your logins, and other information.

WHO FOUND IT?
The vulnerability was found by "Kafeine", a security researcher.  Kafeine sounded the alarm on Thursday and DHS issued it's warning Friday and Saturday.

DO I USE JAVA AT HOME OR WORK?
Probably yes.  The Java problem was widespread and impacted Windows, Apple, and Linux machines.  

Java is one of the most popular programming tools.  According to some estimates, it runs on over 850 million computers around the globe.

IS THIS JAVA'S FIRST ISSUE?
This is not Java's first run in with cybercriminals.  Apple aficionados were stunned to learn last April that cybercriminals hacked a Java vulnerability to infect 500,000 million Apple computers.  It was the largest attack known to date on Apple computers.

According to security researchers at Kaspersky, 50% of last year's cyber attacks involved cybercriminals using bugs in Java to carry out their activities.   

Until you can download the patch, you should turn off Java in your browser.

HOW CAN I TURN OFF JAVA FOR THIS ISSUE OR FUTURE ISSUES?

It's easy and takes less than 5 minutes.  Some of your websites may not function the way you are used to using them after Java is disabled but that's a better alternative than having your computer hijacked.

Chrome

Type "chrome://plugins" into your address bar. 
Choose Java "Java" and click below it where it says "Disable" in blue. 
Close your browser completely.
Open again

Safari

Choose "Safari" and then "Preferences" on the taskbar 
Choose "Security" 
Click on "Enable Java" (so that the box is unchecked)
Close your browser completely
Open again

Less than Internet Explorer 8, you are crazy.  Go update your Internet Explorer now!

Internet Explorer 8,9, and 10

Go to the "Tools" menu and choose the "Manage Add-ons." 
Look at the left and select "Show:" then "All Add-ons." 
Keep scrolling down under the groups looking for "Oracle"
You want to disable everything under Oracle by clicking on the box / diable button
Close your browser
Open again

Firefox

Go to the "Tools" menu and select "Add-ons" 
Choose the "Plug-ins". 
Scroll the list on the right-hand side of the screen - you are looking for  Java 
Click the "Disable" button on the right. 
Close your browser
Open again