US warns on use of flawed Microsoft browser

Apr 28, 2014
The Microsoft logo is seen before the start of a media event in San Francisco, California, March 27, 2014

A US government cybersecurity watchdog warned computer users Monday against using a version of the Microsoft Internet Explorer browser with a security hole that could allow hackers in.

The government's Computer Emergency Response Team (US-CERT) said in a statement that it was aware of "active exploitation" of the in versions six through 11 of the flagship Explorer browser.

The agency, a unit of the Department of Homeland Security, urged computer users to take protective actions and "consider employing an alternative Web browser until an official update is available."

The security flaw is of particular concern for computers running Windows XP, an older version of the operating system for which Microsoft has said it will no longer issue security updates.

Microsoft said Saturday that an attacker who successfully exploits the vulnerability could take control of the computer.

Cybersecurity firm FireEye, which took credit for identifying the flaw, said hackers were exploiting the bug in a campaign nicknamed "Operation Clandestine Fox."

Roger Kay, analyst with Endpoint Technologies Associates, said the flaw affects multiple versions of the browser "but is most dangerous for XP users, since that OS is no longer being maintained."

"While it's still possible that Microsoft will relent and fix XP one more time, users should not count on it," Kay said.

"And even if Microsoft does throw this group a lifeline one more time, inevitably the day will come when the software giant will no longer bail them out."

Explore further: Microsoft issues advisory on Internet Explorer vulnerability

add to favorites email to friend print save as pdf

Related Stories

German watchdog warns of Internet Explorer breach

Sep 18, 2012

(AP)—The German government agency overseeing IT safety is warning of a security breach in Microsoft's Internet Explorer and recommending people use other browsers until the problem is fixed. ...

Internet Explorer users are warned against Poison Ivy

Sep 18, 2012

(Phys.org)—More than a few Internet Explorer users stand vulnerable to fresh attacks of Poison Ivy. In the latest headline in the "Internet Explorer has a flaw" saga, a security hole in Internet Explorer ...

Microsoft fixes browser flaw used in Google breach

Jan 21, 2010

(AP) -- Microsoft Corp. took the unsual step of issuing an unscheduled fix Thursday for security holes in its Internet Explorer browser that played a role in the recent computer attacks that led Google to threaten to leave ...

Recommended for you

How we can each fight cybercrime with smarter habits

7 hours ago

Hackers gain access to computers and networks by exploiting the weaknesses in our cyber behaviors. Many attacks use simple phishing schemes – the hacker sends an email that appears to come from a trusted ...

Davos elites warned about catastrophic cyberattacks

Jan 24, 2015

Attacks on power plants, telecommunications and financial systems, even turning all of Los Angeles' traffic lights green: Davos elites were warned Saturday of the terrifying possibilities of modern cyber ...

Email scam nets $214 mn in 14 months: FBI

Jan 22, 2015

An email scam which targets businesses with bogus invoices has netted more than $214 million from victims in 45 countries in just over one year, an FBI task force said Thursday.

User comments : 0

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.