Malware targets Java servers

[Fiery]

Security researchers from antivirus vendor Trend Micro have uncovered a piece of backdoor-type malware that infects Java-based HTTP servers and allows attackers to execute malicious commands on the underlying systems.

The threat, known as BKDR_JAVAWAR.JG, comes in the form of a JavaServer Page (JSP), a type of Web page that can only be deployed and served from a specialized Web server with a Java servlet container, such as Apache Tomcat. (See also "Security in 2013: The rise of mobile malware and fall of hacktivism.")

Once this page is deployed, the attacker can access it remotely and can use its functions to browse, upload, edit, delete, download or copy files from the infected system using a Web console interface. This is similar to the functionality provided by PHP-based backdoors, commonly known as PHP Web shells.

Read more: http://www.pcworld.com/article/2023543/malware-targets-java-servers.html

 

[McLovin]

See, Trend Micro can be good for something.

 

[Vextor]

Java has always been vulnerable, it comes as no surprise.

 

[McLovin]

Some companies though might need it for programming and what not though, but still should be very careful.

 

[ultradolby1]

J ust
A nother
V ulnerability
A ttack

 

[Vextor]

Java has always been vulnerable, it comes as no surprise.

Some companies though might need it for programming and what not though, but still should be very careful.

It isn't that great of a programming language, Minecraft is a good example of why.

The game on PC, while the PC will have better specs than the XBOX, it still runs slowly due to the fact it is based on Java.

However, on XBOX, even though the specifications are much lower end, it still runs better due to the better programming language.