On 10 January 2013, the United States Computer Emergency Readiness Team (US-CERT) issued a warning advising users to disable Java because a serious exploit found allows hackers to take control of usersâ€™ computers (Macs, PCs, Linux).
While waiting for Oracle to release a Java update fix, Apple had quietly disabled Java on Macs by blacklisting it. On the other hand, Mozilla promotes Firefoxâ€™s Click To Play feature which does not auto load Java plugin until you clicks to enable it.
Oracle released Java SE7 Update 11
On January 13, 2013, Oracle finally released Java SE7 Update 11 which contains important security fixes. Oracle strongly recommends that all Java SE7 users update to the release. Download Java SE7 update 11.
Manually disable Java in your browser
You may still want to manually disable Java in your browser for any Java plugin exploit in the future. Hereâ€™s the instructions published by Gizmodo.
- Chrome â€” type â€œchrome://pluginsâ€ in your address bar and find â€œJavaâ€ in the list, click on the blue â€œDisableâ€ link. Restart Chrome.
- Safari â€” Goto Safariâ€™s â€œPreferencesâ€ (âŒ˜,). Click â€œSecurityâ€ on the top row and uncheck â€œEnable Javaâ€. Restart Safari.
- Internet Explorer â€” Goto â€œToolsâ€ menu and select â€œManage Add-onsâ€. Go to the left of the window that pops up and in the drop-down box below the heading â€œShow:â€ select â€œAll Add-ons.â€ Scroll down the list on the right of the window until you find a subheading under the category â€œGroupâ€ that reads â€œOracle America, Inc.â€ Select each item and disable it with the â€œDisableâ€ button in the bottom right-hand corner of the window. Restart Internet Explorer.
- Firefox â€” Goto â€œToolsâ€ menu and select â€œAdd-onsâ€. Select â€œPlug-insâ€ on the left-hand side of the new tab that shows up. Scroll the list on the right-hand side of the screen until you find an item that reads â€œJava (TM) Platform [blablabla].â€ Click the â€Disable” button on the right. Restart Firefox.