There's an unpatched Java exploit out there that seems to have been spotted carrying out some attacks. The current recommendation is to disable Java in browsers (or run NoScript-ish add-ons) to reduce your chances of a bad run in until a patch is released. Though things don't look too serious now and there's no need to panic since it's a pretty easy thing to deal with, I'm just passing this information along. http://cve.mitre.org/cgi-bin/cvename.cgi?name=2012-4681 CVE - CVE-2012-4681 Common Vulnerabilities and Exposures (CVE®) is a dictionary of common names (i.e., CVE Identifiers) for publicly known information security vulnerabilities. CVE's common identifiers enable data exchange between security products and provide a... cve.mitre.org At this time, I'm not sure if other implementations are affected.