New Internet Explorer Exploit Currently Being Used By Attackers

January 12, 2019

Written by wukovits

Are you still using Internet Explorer?  Now you have a new reason to consider switching to a more up to date browser.

As most people know, Microsoft essentially gave up on Explorer after it failed to gain ground against its major competitors in the browser ecosystem.  They started fresh, with Microsoft Edge, designed as a modern replacement.

Unfortunately, there are still legions of faithful IE users hanging on, and they are at risk.  The company recently received a notification from Google’s Threat Analysis Group alerting them to the presence of the flaw, which centers around the way the software’s scripting engine handles objects in memory.

Worse, although the company did not provide any details, a separately published advisory on the topic made clear that this flaw has been seen in the wild and is actively being used by hackers.

The issue is so severe that Microsoft broke with its own policy and issued an emergency update to fix the flaw for IE holdout users.  If, for whatever reason, you have yet to switch to some other browser, this is one security update you won’t want to miss.  You’ll find it on the company’s website indexed as CVE-2018-8653. The company has also made clear that there are no known workarounds for this issue, except to install the latest patch.

Ultimately, of course, the best solution would be to seriously consider migrating away from the use of Internet Explorer. Microsoft will likely continue to issue emergency patches as other issues are discovered. Unfortunately though, they have formally ended support for the product, so there’s no guarantee.  Every day you continue using the outdated browser, you put yourself at unnecessary and entirely avoidable risk.

If you haven’t already got firm plans in place to migrate to some other browser, this is one more in a long list of compelling reasons to make it a priority.

Used with permission from Article Aggregator

Bayou Tech

We provide solutions for your business. Find out how we can help.

Related Articles

Some Amazon Device Features May Have Security Risks

Have you heard of Amazon Sidewalk? If not, it's definitely something you should be aware of. Depending on your point of view, the new feature, which was enabled by default on a wide range of Amazon devices by default on June 8 of this year (2021) is either...

Email Unsubscribe Scam Can Easily Fool Any User

Scammers are increasingly relying on a tried and true bit of social engineering to fool unsuspecting users into unwittingly signing up to receive a flood of additional spam email. They accomplish this by blasting out an email asking recipients if they wish to...

Update VMWare Software Immediately To Avoid Possible Attack

The US Cybersecurity and Infrastructure Security Agency recently issued a warning to all companies running VMware Vcenter Server and VMware Cloud Foundation. They are asking them to download and apply the latest security patches as soon as possible because attackers...

Send us a message

Your message was sent.