Zero-day Java exploit in the wild - first attempted patch still vulnerable
Just a heads-up that there's at least one zero-day exploit in the wild for Java, possibly two. Oracle apparently almost never patches Java out of cycle; they issue three patches per year, no matter what, and mid-October is the next targeted window.
I suspect they may be pressured into patching sooner, but in the interim, you should seriously consider just removing Java from your system altogether. If you can't do that, disabling the Java plugin in your browser will make you less vulnerable, but the hole in the language will still be present.