inactionman
Can't get enough of FH
- Joined
- Dec 23, 2003
- Messages
- 1,864
Haven't seem anything on here about this, but I thought I'd better warn people. There's a *major* problem with using IE. Apparently a cracker gang, probably related to organised crime, has broken into a number of legitimate websites (on some using what is thought to be an unpatched vulnerability in IIS) and have placed malicious software on them that uses two *unpatched* vulnerabilities in IE to install itself. This program then bombards you with pop-ups, and installs a keylogger to get username/passwords, and credit card details. It's quite a sneaky program!
Link to story on zdnet:
http://zdnet.com.com/2100-1105_2-5247187.html?tag=zdfd.newsfeed
Microsoft page:
http://www.microsoft.com/security/incident/download_ject.mspx
The Microsoft page doesn't really give you any solution, as they tell you to increase your browser security settings to high (blocks the script that installs it), and to add trusted sites to the trusted zone (how are we supposed to know which sites to trust??!!).
Basically my advice is to quit using an insecure non-standards compliant browser, and to download a decent browser like Firefox! (www.mozilla.org/products/firefox)
Don't you just love the outcomes of Microsoft's recent focus on security!
Link to story on zdnet:
http://zdnet.com.com/2100-1105_2-5247187.html?tag=zdfd.newsfeed
Microsoft page:
http://www.microsoft.com/security/incident/download_ject.mspx
The Microsoft page doesn't really give you any solution, as they tell you to increase your browser security settings to high (blocks the script that installs it), and to add trusted sites to the trusted zone (how are we supposed to know which sites to trust??!!).
Basically my advice is to quit using an insecure non-standards compliant browser, and to download a decent browser like Firefox! (www.mozilla.org/products/firefox)
Don't you just love the outcomes of Microsoft's recent focus on security!