latest Java version unlocks PCs to hacker attacks

Oracle's latest version of Java software is claimed to be vulnerable to hackers, as it unlocks PCs to hacker attacks with no way to defend against their attacks, according to researchers.

Researchers reveal that the security gap is affecting all versions of  Internet Explorer,Firefoxand Opera, while Google Chrome is said to be less affected.

The warnings were reported by Rapid7, AlienVault and other cyber security firms which are likely to alarm a PC community who are trying to prevent security threats from hackers, viruses and malware.

Researchers have recognised the code which attacks machines by developing a newly discovered error in the latest version of Java.When the new code is executed, a second piece of software called 'Poison Ivy' is released that allows hackers to achieve control of the infected computer.

Oracle is understood to be preparing a statement on a security scare over its Java software that has left many computer users unsure what to do.

Some computer security firms urged personal computers users to disable Java software on their computers because of a fault in the latest version of Java that could let hackers infect and then gain control of their computers.

Java is installed on the vast majority of computers and security companies said users need only visit an infected website to fall victim.

Security experts recommended that users not enable Java for universal use on their browsers. Instead, they said it was safest to allow use of Java browser plug-ins on a case-by-case basis when prompted for permission by trusted programs such as GoToMeeting, a Web-based collaboration tool from Citrix Systems Inc

Rapid7 has set up a web page that tells users whether their browser has a Java plug-in installed that is vulnerable to attack: www.isjavaexploitable.com/