IE vulnerability was one of the vectors used to attack Google and other U.S. companies

By /

Google, Adobe, Yahoo, Symantec and a number of other silicon valley companies were targeted last week by hackers who stole source code.  The attacks apparently originated in China, and Microsoft has acknowledged that a vulnerability in Internet Explorer was one of the vectors used.

The vulnerability affects versions 6, 7 and 8 of IE running on most current Windows operating systems. It works like this: a user clicks on a link in email or IM that takes the user to a web site where malware is downloaded to the computer.

This allows the attacker to take control of the computer on the targeted network.

Microsoft is currently developing a fix. In the meantime, the workaround is to set the Internet Security Zone in IE to “high” and enable DEP.

http://news.cnet.com/8301-27080_3-10435232-245.html

DEBRA LITTLEJOHN SHINDER
MVP (Enterprise Security)
“MS SECURITY”
[email protected]

About The Author

Debra Littlejohn Shinder is a technology and security analyst and author specializing in identity, security and cybercrime, utilizing her past experience as a police officer and police academy/criminal justice instructor. She has written numerous books and articles for web and print publications and has been awarded the Microsoft MVP designation for fourteen years in a row.

Read Next

Leave a Comment

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Scroll to Top