Attackers are using a Java zero-day vulnerability to target high-profile organizations as part of the Pawn Storm campaign, Trend Micro said Sunday.
The attack takes advantage of a vulnerability in Microsoft Windows Common Controls, according to the security firm.
Trend Micro recommends that Java be disabled in computer systems while the company is working with Oracle to fix the issue.