Websense said Tuesday that Java users aren't getting much better at patching the software.
The security firm had revealed in March that 94 percent of users were currently running a version of Java that is vulnerable to at least one exploit aimed at the software.
Websense researchers continued investigating the Java patching habits of their customers and determined that one month after April's Java update was released by Oracle, only seven percent had upgraded to the latest version.
Shortly after the update was distributed, an exploit taking advantage of one of the vulnerabilities fixed went live.