Microsoft has announced the issue of an emergency patch to fix a security flaw believed to have affected as many as 10,000 websites.Internet Explorer users were being urged by experts to switch to a rival browser such as Firefox or Safari until the problem, which could allow criminals to take control of people's computers and steal passwords, was fixed. Microsoft urged people to be vigilant while it investigated and prepared the emergency patch to resolve the issue.
Upon the discovery of the vulnerability, senior security advisor at Trend Micro, Rick Ferguson commented to the BBC: "What we've seen from the exploit so far is it stealing game passwords, but it's inevitable that it will adapted by criminals." He added, "It's just a question of modifying the payload the trojan installs."
Richard Cox, chief information officer of anti-spam body The Spamhaus Project echoed Trend Micro's warning to the BBC.
"It won't be long before someone reverse engineers this exploit for more fraudulent purposes. Trend Micro's advice (of switching to an alternative web browser) is very sensible," he said.
Microsoft assured users of Internet Explorer that switching browsers would not be necessary, stating that the vulnerability would only affect 0.02% of internet sites and that a solution to the problem was forthcoming.
Some experts are reading the decision by Microsoft to issue the emergency patch as quickly as possible as evidence of the potential danger of the flaw, also noting that it is relatively unusual for Microsoft to issue what is being called an "out of band" security bulletin. With other browsers such as Firefox, Opera, Chrome and Apple's Safari system are not vulnerable to the current flaw, experts have reinforced the opinion that Explorer users should switch browsers until the problem is fixed.
But Graham Cluley, senior consultant with security firm Sophos, said no browser is exempt from problems.
"Firefox has issued patches and Apple has too. Whichever browser you are using you have to keep it up to date," he told the BBC.
"People have to be prepared and willing to install security updates. That nagging screen asking if you want to update should not be ignored," he said.
Microsoft is due to make the emergency patch available from 1800 GMT on December 17th.
A Pondlife Limited and the Website Design Centre have not had any reports of secruity issues during this time.
The APL Team
Website Design, Online Marketing & Public Relations In Norwich, Norfolk
Norfolk's Leading Design & Marketing Agency
Wood Farm, Deopham Road, Attleborough, Norfolk, NR17 1AJ
For more information visit our website at:
www.apondlife.com
Posts
0 comments:
Post a Comment