Another Java exploit

Still think you should run Java? Users in the United Kingdom, France and Romania saw malware-tainted ads served up from ads.yahoo.com.

Yahoo! reported that it was aware of the ads and was blocking them. The few that it discovered were attempts to harness the Magnitude Exploit Kit to fling Java-based exploits.

HitManPro’s blog went on to explain that the end goal of the attack was to plant banking Trojans such as ZeuS onto compromised machines.

The infected ads have not as yet been tried in North America. But it is still a lesson that running Java in the browser is far more trouble than it's worth.