Monday, April 28, 2014

Stop using Microsoft's IE browser until bug is fixed

The internet's been slow & flaky today. I wonder if this bug is to blame, or the bad weather in some parts of the U.S.? Maybe a combination.

http://www.cnet.com/news/stop-using-ie-until-bug-is-fixed-says-us/

by Seth Rosenblatt
April 28, 2014

It's not often that the US government weighs in on the browser wars, but a new Internet Explorer vulnerability that affects all major versions of the browser from the past decade has forced it to raise an alarm: Stop using IE.

This zero-day exploit is an unpatched flaw in the Microsoft browser that allows attackers to run malicious code remotely. Security firm FireEye said that it is currently being used to attack financial and defense organizations in the US via Internet Explorer 9, 10, and 11. Those versions of the browser run on Windows Vista, Windows 7, and Windows 8, although the exploit is present in Internet Explorer 6 and above.

While the Department of Homeland Security's Computer Emergency Readiness Team regularly issues browser advisories, this is one of the few times that the CERT team has recommended that people avoid using a specific browser.

FireEye recommends that if you can't switch browsers, that you disable Internet Explorer's Flash plug-in. You can also use IE with Microsoft's Enhanced Mitigation Experience Toolkit security app, but that will not be as secure as simply switching browsers.

-----

No comments:

Post a Comment