US warns on use of flawed Microsoft browser

Apr 28, 2014
The Microsoft logo is seen before the start of a media event in San Francisco, California, March 27, 2014

A US government cybersecurity watchdog warned computer users Monday against using a version of the Microsoft Internet Explorer browser with a security hole that could allow hackers in.

The government's Computer Emergency Response Team (US-CERT) said in a statement that it was aware of "active exploitation" of the in versions six through 11 of the flagship Explorer browser.

The agency, a unit of the Department of Homeland Security, urged computer users to take protective actions and "consider employing an alternative Web browser until an official update is available."

The security flaw is of particular concern for computers running Windows XP, an older version of the operating system for which Microsoft has said it will no longer issue security updates.

Microsoft said Saturday that an attacker who successfully exploits the vulnerability could take control of the computer.

Cybersecurity firm FireEye, which took credit for identifying the flaw, said hackers were exploiting the bug in a campaign nicknamed "Operation Clandestine Fox."

Roger Kay, analyst with Endpoint Technologies Associates, said the flaw affects multiple versions of the browser "but is most dangerous for XP users, since that OS is no longer being maintained."

"While it's still possible that Microsoft will relent and fix XP one more time, users should not count on it," Kay said.

"And even if Microsoft does throw this group a lifeline one more time, inevitably the day will come when the software giant will no longer bail them out."

Explore further: Microsoft issues advisory on Internet Explorer vulnerability

add to favorites email to friend print save as pdf

Related Stories

German watchdog warns of Internet Explorer breach

Sep 18, 2012

(AP)—The German government agency overseeing IT safety is warning of a security breach in Microsoft's Internet Explorer and recommending people use other browsers until the problem is fixed. ...

Internet Explorer users are warned against Poison Ivy

Sep 18, 2012

(Phys.org)—More than a few Internet Explorer users stand vulnerable to fresh attacks of Poison Ivy. In the latest headline in the "Internet Explorer has a flaw" saga, a security hole in Internet Explorer ...

Microsoft fixes browser flaw used in Google breach

Jan 21, 2010

(AP) -- Microsoft Corp. took the unsual step of issuing an unscheduled fix Thursday for security holes in its Internet Explorer browser that played a role in the recent computer attacks that led Google to threaten to leave ...

Recommended for you

Hacked emails slice spam fast

9 hours ago

Spam spreads much faster and to more people when it is being propagated by hacked, or otherwise compromised, email accounts rather than legitimate accounts, according to research published in the International Journal of ...

Ten ways to stay safe while shopping online

Nov 25, 2014

As the holiday shopping season gets underway, the importance of avoiding hackers, phishing scams and phony websites while buying online becomes increasingly important.

User comments : 0

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.