Apple has released a Java 1.6.0_31 update on Tuesday that would improve compatibility and security. The patch specifically fixes vulnerabilities in Java 1.6.0_29, which was allowing malicious code to be executed when visiting a compromised website. Hackers started exploiting the Java vulnerability on March 16th and Russian security firm estimates that about 600,000 Macs may have been affected by the “Flashback” botnet.
There are about four million compromised websites with some people claiming that they have been infected by even visiting big websites like Dlink.com. F-Secure has instructions on how to detect and delete the Flashback botnet.