Major flaw revealed in Internet Explorer  Digg  Google  Spurl  Blink  Furl  Y! MyWeb  

The major press outlets are abuzz this morning with news of a major new security flaw that affects all versions of Internet Explorer from IE5 to the latest beta of IE8. The attack has serious and far-reaching ramifications -- and they're not just theoretical attacks. In fact, the flaw is already in wide use as a tool to steal online game passwords, with some 10,000 websites infected with the code needed to take advantage of the hole in IE.

Virtually all security experts (as well as myself) are counseling users to switch to any other web browser -- none of the others are affected, including Firefox, Chrome, and Opera -- at least for the time being, though Microsoft has stubbornly said it "cannot recommend people switch due to this one flaw." Microsoft adds that it is working on a fix but has offered no ETA on when that might happen. Meanwhile it offers some suggestions for a temporary patch, including setting your Internet security zone settings to "high" and offering some complicated workarounds. (Some reports state, however, that the fixes do not actually work.)

Expedient patching or switching are essential. Security pros fear that the attack will soon spread beyond the theft of gaming passwords and into more criminal arenas, as the malicious code can be placed on any website and can be adapted to steal any password stored or entered using the browser.

Microsoft issued a workaround found here.

Article submitted by: Taut
Last Update: 12-17-2008
Category: Technology

Print | E-mail

Current rating: 8 by 6 users
Would you recommend this article to a friend?

Not a Chance 12345678910 Absolutely

Re: Major flaw revealed in Internet Explorer

By: Meph7447 @ 02:18:18 : 12-26-2008

It doesn't surprise me that much that IE is having yet another security hole in their proclaimed "Most Secured Browser" I switched to FF ages ago and do not recommend IE to any normal PC user specially anything with delicate passwords or precious files that they don't want to lose.

Please register or sign-in to post comments.

Related News Stories

(35,378 reads) 02-10-2011
 · Free traffic service for your nuke site
(10,372 reads) 01-16-2009
 · Nearly 9 Million PCs Hit By 'Downandup' Worm
(17,622 reads) 06-13-2007
 · Directx 10 for XP
(15,445 reads) 08-01-2006
 · Windows Media Player 11 Beta.
(15,693 reads) 08-01-2006
 · Microsoft to charge for Office beta.
(15,355 reads) 07-24-2006
 · AMD and ATI to Create Processing Powerhouse
(15,488 reads) 07-14-2006
 · Firefox 2.0 Beta available.
(16,856 reads) 04-25-2006
 · New IE Beta
(15,811 reads) 04-07-2006
 · PayPal Launches Mobile Service