US warns on use of flawed Microsoft browser

Apr 28, 2014
The Microsoft logo is seen before the start of a media event in San Francisco, California, March 27, 2014

A US government cybersecurity watchdog warned computer users Monday against using a version of the Microsoft Internet Explorer browser with a security hole that could allow hackers in.

The government's Computer Emergency Response Team (US-CERT) said in a statement that it was aware of "active exploitation" of the in versions six through 11 of the flagship Explorer browser.

The agency, a unit of the Department of Homeland Security, urged computer users to take protective actions and "consider employing an alternative Web browser until an official update is available."

The security flaw is of particular concern for computers running Windows XP, an older version of the operating system for which Microsoft has said it will no longer issue security updates.

Microsoft said Saturday that an attacker who successfully exploits the vulnerability could take control of the computer.

Cybersecurity firm FireEye, which took credit for identifying the flaw, said hackers were exploiting the bug in a campaign nicknamed "Operation Clandestine Fox."

Roger Kay, analyst with Endpoint Technologies Associates, said the flaw affects multiple versions of the browser "but is most dangerous for XP users, since that OS is no longer being maintained."

"While it's still possible that Microsoft will relent and fix XP one more time, users should not count on it," Kay said.

"And even if Microsoft does throw this group a lifeline one more time, inevitably the day will come when the software giant will no longer bail them out."

Explore further: Microsoft issues advisory on Internet Explorer vulnerability

add to favorites email to friend print save as pdf

Related Stories

German watchdog warns of Internet Explorer breach

Sep 18, 2012

(AP)—The German government agency overseeing IT safety is warning of a security breach in Microsoft's Internet Explorer and recommending people use other browsers until the problem is fixed. ...

Internet Explorer users are warned against Poison Ivy

Sep 18, 2012

(Phys.org)—More than a few Internet Explorer users stand vulnerable to fresh attacks of Poison Ivy. In the latest headline in the "Internet Explorer has a flaw" saga, a security hole in Internet Explorer ...

Microsoft fixes browser flaw used in Google breach

Jan 21, 2010

(AP) -- Microsoft Corp. took the unsual step of issuing an unscheduled fix Thursday for security holes in its Internet Explorer browser that played a role in the recent computer attacks that led Google to threaten to leave ...

Recommended for you

Man pleads guilty in New York cybercrime case

Nov 22, 2014

A California man has pleaded guilty in New York City for his role marketing malware that federal authorities say infected more than a half-million computers worldwide.

How to keep the world's eyes out of your webcam

Nov 21, 2014

There are concerns that thousands of private webcams around the world could be streaming live images to anybody who wishes to view them – without their owner knowing – thanks to a Russian website provi ...

Britain urges Russia to shut down webcam spying site

Nov 20, 2014

A Russian website offering thousands of live feeds peering into bedrooms and offices around the world by accessing poorly secured webcams should be taken down immediately, British officials said on Thursday.

NSA Director: China can damage US power grid

Nov 20, 2014

China and "one or two" other countries are capable of mounting cyberattacks to shut down the electric grid in parts of the United States. That's according to Admiral Michael Rogers, the director of the National Security Agency ...

Some in NSA warned of a backlash

Nov 20, 2014

Current and former intelligence officials say dissenters within the National Security Agency warned in 2009 that secretly collecting American phone records wasn't providing enough intelligence to justify ...

Russia hacking site spying webcams worldwide: Britain

Nov 20, 2014

Britain's privacy watchdog on Thursday called on Russia to take down a site showing hacked live feeds from thousands of homes and businesses around the world and warned it was planning "regulatory action".

User comments : 0

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.