IE Bug: Internet Explorer Major Security Flaw Revealed

Image: IE Bug: Internet Explorer Major Security Flaw Revealed

Monday, 28 Apr 2014 06:56 PM

By Newsmax Wires

  Comment  |
   Contact  |
  Print  
|  A   A  
  Copy Shortlink
A major security bug in widely used Web browser Internet Explorer, or IE, was disclosed over the weekend and now Microsoft Corp is rushing to fix the flaw that hackers have already exploited in attacks on some U.S. companies.

According to Reuters, PCs running Windows XP will not receive any updates fixing that bug when they are released, however, because Microsoft stopped supporting the 13-year-old operating system earlier this month. Security firms estimate that between 15 and 25 percent of the world's PCs still run Windows.

Microsoft disclosed on Saturday its plans to fix the bug in an advisory to its customers posted on its security website, which it said is present in Internet Explorer versions 6 to 11. Those versions dominate desktop browsing, accounting for 55 percent of the PC browser market, according to tech research firm NetMarketShare.

Urgent: Do You Approve Or Disapprove of President Obama's Job Performance? Vote Now in Urgent Poll

Cybersecurity software maker FireEye Inc said that a sophisticated group of hackers have been exploiting the bug in a campaign dubbed "Operation Clandestine Fox."

FireEye, whose Mandiant division helps companies respond to cyber attacks, declined to name specific victims or identify the group of hackers, saying that an investigation into the matter is still active.

"It's a campaign of targeted attacks seemingly against U.S.-based firms, currently tied to defense and financial sectors," FireEye spokesman Vitor De Souza said via email. "It's unclear what the motives of this attack group are, at this point. It appears to be broad-spectrum intel gathering.”

He declined to elaborate, though he said one way to protect against them would be to switch to another browser.

Microsoft said in the advisory that the vulnerability would allow a hacker to take complete control of an affected system, then do things such as viewing changing, or deleting data, installing malicious programs, or creating accounts that would give hackers full user rights.

FireEye and Microsoft have not provided much information about the security flaw or the approach that hackers could use to figure out how to exploit it, said Aviv Raff, chief technology off cyber security firm Seculert.

Yet other groups of hackers are now racing to learn more about it so they can launch similar attacks before Microsoft prepares a security update, Raff said. "Microsoft should move fast," he said. "This will snowball."

Still, he cautioned that Windows XP users will not benefit from that update since Microsoft has just halted support for that product.

The software maker said in a statement to Reuters that it advises Windows XP users to upgrade to one of two most recently versions of its operating system, Windows 7 or 8.

Urgent: Assess Your Heart Attack Risk in Minutes. Click Here.

Related Stories:

© 2014 Newsmax. All rights reserved.

  Comment  |
   Contact  |
  Print  
  Copy Shortlink
Send me more news as it happens.
 
 
Get me on The Wire
Send me more news as it happens.
Around the Web
Join the Newsmax Community
Please review Community Guidelines before posting a comment.
>> Register to share your comments with the community.
>> Login if you are already a member.
blog comments powered by Disqus
 
Email:
Country
Zip Code:
Privacy: We never share your email.
 
Hot Topics
Follow Newsmax
Like us
on Facebook
Follow us
on Twitter
Add us
on Google Plus
You May Also Like

Passengers Push Plane on Icy Russian Runway (With Help of a Tractor)

Wednesday, 26 Nov 2014 20:45 PM

Passengers on a Russian plane got off to push the aircraft to help get it on the runway after it began slipping on ice i . . .

Bernie Tiede, Convicted Murderer Mortician, to Get New Sentencing

Wednesday, 26 Nov 2014 17:39 PM

Bernie Tiede, the mortician who was convicted of killing his companion Marjorie Nugent in 1996, will receive a new sente . . .

Chrysler Pentastar Logo Getting Phased Out With FCA Formation

Wednesday, 26 Nov 2014 15:51 PM

Chrysler's iconic Pentastar logo is being phased out as the company introduces a new logo in keeping with the newly form . . .

Top Stories

Newsmax, Moneynews, Newsmax Health, and Independent. American. are registered trademarks of Newsmax Media, Inc. Newsmax TV, and Newsmax World are trademarks of Newsmax Media, Inc.

 
NEWSMAX.COM
America's News Page
©  Newsmax Media, Inc.
All Rights Reserved