Oracle Corporation has agreed to settle claims by the FTC that it deceived consumers about the security of updates to its Java Platform, Standard Edition (Java SE).  The Commission alleged that Oracle failed to adequately inform its customers of how to remove outdated iterations of Java SE from their computers after updating.  These backlogged older versions of Java can be exploited by malware designed to target Java SE’s software vulnerabilities, allowing attackers to log into consumer financial accounts and collect “sensitive personal information for the purpose of targeted spear-phishing campaigns.”  Java SE is installed on more than 850 million personal computers.  The settlement requires Oracle to take certain actions to avoid misrepresentations to customers and it must report to the FTC on its compliance efforts for five years.