[@consuella] Oracle has made a lot of progress on closing the Java security gaps. Most of those problem are related to allowing unsecure Java applets run inside the browser. DiskFerret is not a browser application, it is a local computer application. It’s jar file is signed with a code signing certificate from a major certificate signing authority and the code cannot be changed else it will not run. It’s safe and does not suffer from browser Java applet exploits.