Jump to content

Microsoft to patch zero-day IE bug now under attack


Firefox
 Share

Recommended Posts

Microsoft to patch zero-day IE bug now under attack

Eight updates will plug holes in IE, Windows, Office, SharePoint and Silverlight

Computerworld - Microsoft today said it will ship eight security updates next week to patch critical vulnerabilities in Windows and Internet Explorer (IE), with the one aimed at IE plugging the hole attackers have been exploiting for months.

"The Critical update for Internet Explorer will be a cumulative update which will address the publicly disclosed issue described in Security Advisory 2887505," confirmed Dustin Childs on the Microsoft Security Response Center (MSRC) blog today.

Security experts identified the IE update as the one to deploy first, citing the fact that one of the vulnerabilities has been used by cyber criminals in targeted attacks against users in Japan and Taiwan.

"IE is always top of the list," said Andrew Storms, director of DevOps at cloud security vendor CloudPassage, in an interview today.

On Sept. 17, Microsoft confirmed that hackers were exploiting a critical unpatched vulnerability in Internet Explorer 8 (IE8) and Internet Explorer 9 (IE9). The bug, however, existed in all versions of the browser, including the 12-year-old IE6 and the newest IE11.

Over the next two weeks, security companies reported that attacks had been aimed at Japanese and Taiwanese organizations since July. And earlier this week, exploit code went public as a working module was added to the open-source Metasploit penetration framework. Researchers predicted that the Metasploit appearance would result in an increase in attacks as less-capable hackers copied the code and added it to their weaponized toolkits.

For the FULL Story click the CW Logo Below....

cwlogo.JPG

Link to post
Share on other sites

  • Root Admin

Microsoft to patch zero-day IE bug now under attack

"IE is always top of the list," said Andrew Storms, director of DevOps at cloud security vendor CloudPassage, in an interview today.

 

 

Well with almost 60% of the browser market share according to NetMarketshare that stands to reason that it would be targeted the most.

 

If you look at Firefox and Chrome who have the next biggest shares they're attacked often too.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.