{"id":913,"date":"2014-04-29T01:52:15","date_gmt":"2014-04-29T08:52:15","guid":{"rendered":"http:\/\/www.ultimatewb.com\/blog\/?p=913"},"modified":"2014-05-01T23:26:21","modified_gmt":"2014-05-02T06:26:21","slug":"internet-explorer-bug-use-google-chrome-mozilla-firefox-to-avoid-hacking","status":"publish","type":"post","link":"https:\/\/www.ultimatewb.com\/blog\/913\/internet-explorer-bug-use-google-chrome-mozilla-firefox-to-avoid-hacking\/","title":{"rendered":"Internet Explorer bug, Use Google Chrome\/Mozilla Firefox to avoid hacking"},"content":{"rendered":"

\"InternetUPDATE:\u00a0Microsoft releases Internet Explorer security patch, for Windows XP too<\/a><\/p>\n

If you are using Microsoft’s Internet Explorer (IE), the U.S. Department of Homeland security is advising you to switch to another web browser until Microsoft releases a fix for a serious security issue. \u00a0And if you are still a Microsoft XP user, as you may know, Microsoft has stopped support for this operating system April 8th of this year, so you should either keep using a different internet browser or upgrade your operating system software and\/or computer – Microsoft will not be releasing a security update for XP. \u00a0Security firms estimate that between 15 and 25 percent of the world’s PCs still run Windows XP. \u00a0Choices for web browsers include Google Chrome and Mozilla Firefox.<\/p>\n

The IE security hole was uncovered by Milpitas, California based internet security software company FireEye Research Labs, on Saturday. \u00a0The bug allows hackers to get around security protections in the Windows operating system. \u00a0Computers can then get infected when visiting a compromised website. \u00a0It involves a corrupted Adobe Flash file to attack the victim’s computer, so users can avoid it also by turning off Adobe Flash.<\/p>\n

“The attack will not work without Adobe Flash,”\u00a0said. “Disabling the Flash plugin within IE will prevent the exploit from functioning.”
\n(via USA Today<\/a>)<\/p><\/blockquote>\n

The vulnerability could allow a hacker to take complete control of an affected system. \u00a0The bug affects all versions of Internet Explorer 6 through 11, which accounts for 55 percent of the PC browser market, according to tech research firm NetMarketShare. \u00a0It\u00a0is currently targeting IE9 and IE10 (about 25% run this), according to FireEye. \u00a0They say hackers exploiting the bug are calling their campaign “Operation Clandestine Fox.”<\/p>\n

“It’s a campaign of targeted attacks seemingly against U.S.-based firms, currently tied to defense and financial sectors,” FireEye spokesman Vitor De Souza said via email. “It’s unclear what the motives of this attack group are, at this point. It appears to be broad-spectrum intel gathering.”
\n(via HuffingtonPost<\/a>)<\/p><\/blockquote>\n

Microsoft said it was “aware of limited, targeted attacks that attempt to exploit” the vulnerability. \u00a0They are called “watering-hole attacks”, explains Satnam Narang, threat researcher at computer security company Symantec in Mountain View, California.<\/p>\n

Rather than directly reach out to a victim, the hackers inject their code into a “normal, everyday website” that the victim visits, he said. Code hidden on the site then infects their computers.<\/p>\n

“It’s called a watering-hole attack because if you’re a lion, you go to the watering hole because you know that’s where the animals go to drink.”
\n(via\u00a0USA Today<\/a>)<\/p><\/blockquote>\n

Microsoft confirmed Saturday that they are working on the code to close the security hole. \u00a0They typically release security patches on the second Tuesday of each month, known as Patch Tuesday. \u00a0Microsoft has not confirmed whether they will release the security patch for this vulnerability before the next Patch Tuesday, May 14th.<\/p>\n

Alternative web browsers, Google Chrome and Mozilla Firefox:<\/p>\n

\"Google<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

UPDATE:\u00a0Microsoft releases Internet Explorer security patch, for Windows XP too If you are using Microsoft’s Internet Explorer (IE), the U.S. Department of Homeland security is advising you to switch to another web browser until Microsoft releases a fix for a … Continue reading →<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[621,336],"tags":[670,289,668,667,288,666,672,665,671,669],"class_list":["post-913","post","type-post","status-publish","format-standard","hentry","category-technology-in-the-news","category-website-security-2","tag-fireeye","tag-google-chrome","tag-hacking","tag-internet-bug","tag-internet-explorer","tag-internet-security","tag-microsoft","tag-mozilla-firefox","tag-symantec","tag-windows-xp"],"_links":{"self":[{"href":"https:\/\/www.ultimatewb.com\/blog\/wp-json\/wp\/v2\/posts\/913"}],"collection":[{"href":"https:\/\/www.ultimatewb.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.ultimatewb.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.ultimatewb.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ultimatewb.com\/blog\/wp-json\/wp\/v2\/comments?post=913"}],"version-history":[{"count":10,"href":"https:\/\/www.ultimatewb.com\/blog\/wp-json\/wp\/v2\/posts\/913\/revisions"}],"predecessor-version":[{"id":930,"href":"https:\/\/www.ultimatewb.com\/blog\/wp-json\/wp\/v2\/posts\/913\/revisions\/930"}],"wp:attachment":[{"href":"https:\/\/www.ultimatewb.com\/blog\/wp-json\/wp\/v2\/media?parent=913"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.ultimatewb.com\/blog\/wp-json\/wp\/v2\/categories?post=913"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.ultimatewb.com\/blog\/wp-json\/wp\/v2\/tags?post=913"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}