According to Microsoft, cyber-criminals keep on taking advantage of security flaws within Java despite Oracle already issuing patches for some, only because end-users don't update their systems properly.
Reportedly, Microsoft had discovered exploits of around a half to a third associated with the Java Runtime Environment. Presently, similar instances tend to constantly rise from quarter to quarter.
Brian Krebs Director of Trustworthy Computing Group at Microsoft discovered how malware in one instance used a Java vulnerability already patched wherein that malicious program was packaged with one malware toolkit that criminals could buy from underground websites.
...
