Critical Zero-Day Bug Found in IE

Researchers uncovered active malware attacks that exploit a critical and previously unknown vulnerability in the latest versions of Microsoft’s Internet Explorer (IE) browser. The attacks install a backdoor Trojan when unsuspecting people browse a booby-trapped website using a fully patched version of Windows XP running the latest versions of IE 7 or IE 8 and also effects versions of IE 9 running on Windows Vista and Windows 7.

A Microsoft representative said that company engineers are investigating the reports and didn’t have immediate comment. The article by arstechnica.com suggests Windows users should avoid using IE until more is known about the vulnerability. Java should be kept up-to-date or uninstalled if not used to enable other software to work.

Read the full article.

Advertisements

About MIT
IT Security Awareness Consultant and Communications Specialist at MIT

Comments are closed.

%d bloggers like this: