Microsoft admits security flaw; Stop Exploring, experts say

By

There's a critical security hole in Internet Explorer, the world's most popular web browser.

The unpatched vulnerability, first discovered by hackers and recently acknowledged by Microsoft, could allow someone to gain access to a computer through a website that executes a malicious code. Some 10,000 sites have been compromised so far, putting passwords, financial data, and other sensitive information at risk.

In a lengthy security advisory memo on its website, Microsoft urges users to change their "Internet zone security setting" to "high" and to run the browser in "Protected Mode."

Recommended: Could you pass a US citizenship test?

Computerworld has a good tech-heavy breakdown of the exploit and the best way savvy surfers can disable its ability to affect their machines. But the easier solution may just be to drop IE.

Internet security firm Trend Micro's Rick Ferguson told the BBC that "if users can find an alternative browser, then that's good mitigation against the threat."

Microsoft has come out against users switching to another browser, citing security flaws. "It would not be advisable to send people from one vulnerability (in Internet Explorer) to multiple vulnerabilities," Windows head at Microsoft UK John Curran told the BBC.

That statement could be in reference to a report out this week on the password managers of popular browsers. It ranked Chrome and Safari at the bottom of the list of how securely browsers safeguard login information.

Though this new exploit is the real deal and should be taken seriously, Wired News reminds that garden variety PC users needn't worry just yet.

Share this story:

We want to hear, did we miss an angle we should have covered? Should we come back to this topic? Or just give us a rating for this story. We want to hear from you.

Loading...

Loading...

Loading...