Homeland Security: Stop using Microsoft Internet Explorer until Security holes are fixed

Just as the world finished getting over Heartbleed, security experts at FireEye Inc have discovered another vulnerability over the weekend. The advisory released on Monday by the Department of Homeland Security said that those users running Internet Explorer versions 6 through to version 11 could have their whole computer system affected if they visit the malicious website.

Microsoft Internet Explorer

Microsoft Internet Explorer

Computer users are advised to abandon Microsoft’s Internet Explorer browser until the company fixes the security flaw that hackers have exploited and created a new type of attack. The bug is the first of its kind to emerge since Microsoft stopped offering security updates for Windows XP earlier this month.

 How it works: Hackers set up a website that installs malware into a normal, everyday website that the victim visits. When users unwittingly visit that website the hidden malware then seeps into the user’s computer and gives hackers total control. They could then change or delete data, install malicious programs or create accounts that would give them full user rights.

Cyber security software maker FireEye whose Mandiant division helps companies respond to cyber attacks, refused to identify any of the victims or name the group of malicious people, saying that an investigation into the matter is still going on.

That means even after Microsoft figures out a solution to fix the bug, PCs running the 13-year old operating system could continue to remain unprotected against hackers trying to exploit the newly uncovered flaw. According to the security firm estimate, nearly 15 to 25 percent of the world’s PCs still run Windows XP.

Microsoft said it was undergoing an investigation and working on a fix to the bug. Once it completes the investigation, it will issue a solution for the problem either as a monthly security update or a special security update.

Until the patch is released, the company is urging users to update their software, validate a firewall, and install antivirus software.  Users are also asked to try out different browser such as Chrome, Safari or Firefox. And if the user does not want another browser, Microsoft suggests downloading its Enhanced Mitigation Experience Toolkit version 4.1 to help guard against attacks until a patch is released.

FireEye said disabling the Adobe Flash plugin on Internet Explorer will prevent the exploit because the attacks won’t work without it. And also running IE in enhanced protection mode, which is only available for IE versions 10 and 11, will safeguard users from attacks.

Avatar
Carrie Ann
Carrie Ann is Editor-in-Chief at Industry Leaders Magazine, based in Las Vegas. Carrie covers technology, trends, marketing, brands, productivity, and leadership. When she isn’t writing she prefers reading. She loves reading books and articles on business, economics, corporate law, luxury products, artificial intelligence, and latest technology. She’s keen on political discussions and shares an undying passion for gadgets. Follow Carrie Ann on Twitter, Facebook

Recent Posts

Blackstone puts in an offer of $1.68 billion for St Modwen

Blackstone puts in an offer of $1.68 billion for St Modwen

Blackstone, the private equity firm, is planning to acquire St Modwen Properties, a logistics and housing developer, for £1.2bn ($1.68 billion) in a bid to take advantage of the P
2 days ago
Tesla to lose millions as Stellantis ends CO2 credit buying deal

Tesla to lose millions as Stellantis ends CO2 credit buying deal

Stellantis, the carmaker formed earlier this year by the merger of Fiat Chrysler and PSA, has revealed that it no longer needs to buy emission credits from Tesla, which will result
3 days ago
AB InBev CEO Brito to step down

AB InBev CEO Brito to step down

Anheuser-Busch InBev SA’s Chief Executive Officer Carlos Brito will step down from his role, effective July 1 and Michel Doukeris will succeed him as the new CEO. Brito, who beca
3 days ago
Australia’s Officeworks stops sales of Apple’s AirTags on child safety concerns

Australia’s Officeworks stops sales of Apple’s AirTags on child safety concerns

Officeworks, the Australian office supply store chain, has pulled Apple’s newly launched AirTags from its store following safety concerns for children from its button battery
4 days ago
Ex Google AI scientist joins Apple after resigning in protest for unfair practices

Ex Google AI scientist joins Apple after resigning in protest for unfair practices

Apple, Inc. has hired a former Google AI scientist who resigned in protest against the firing of two employees from the Ethics division. Sammy Bengio, the ex-Google employee, will
5 days ago
Solid Power raises $130 million in second funding round from Ford and BMW

Solid Power raises $130 million in second funding round from Ford and BMW

Solid Power, a solid-state battery system startup, has raised $130 million in Series B funding led by Ford Motor Company and BMW Group. The Louisville, Colorado-based SSB developer
5 days ago