Already covered by slashdot, but its important enough so I’m mentioning it here: Giorgio Maone is a security researcher that has found a way to create the ultimate evil pop™ up using Java.
Checkout the demo at his site (above) – it creates a full screen pop up with no visible way to close it. Pretty cool. Hopefully Sun would patch it soon and find a way to distribute the update to all currently running Java virtual machine software installed on desktops around the world… but don’t hold your breath for it. As Giorgio went public a bit early with the full disclosure(1), expect to see “evil pop ups™” everywhere in the next several months.
- an honest mistake, can’t really blame him – read his blog post for the full story [↩]