Widespread Attacks Exploit Newly-Patched IE Bug 141
itwbennett writes "The first widespread attack to leverage the Internet Explorer flaw that Microsoft patched in an emergency update Thursday morning has surfaced. By midday Thursday Symantec had spotted hundreds of Web sites that hosted the attack code. The attack installs a Trojan horse program that is able to bypass some security products and then give hackers access to the system, said Joshua Talbot, a security intelligence manager with Symantec. Once it has infected a PC, the Trojan sends a notification e-mail to the attackers, using a US-based, free e-mail service that Symantec declined to name."
Relatedly, reader N!NJA was among several to point out that Microsoft has apparently been aware of this flaw since September.
Re:Exactly how does it work. (Score:5, Informative)
Once Windows is compromised (by a sophisticated worm, not something that places advertisements in IE), there is very little a user can do that the worm cannot prevent or bypass.
The Windows settings assistant may nod and smile, and say the port is closed, while the worm is using it in the background. You might see that if you look at the router's logs, but inside Windows the worm can control what you see or do.
Re:threat? (Score:5, Informative)
I just laugh. I haven't had to reformat the drive even once since I obscured IE.
If you use windows without IE you are still very much at risk from the many other windows holes. You will cracked sooner or later and you may not even notice.
Re:Time to bury Firefox (Score:2, Informative)
Re:threat? (Score:5, Informative)
IE market share is below 40% [w3schools.com]
Anyone who uses w3schools's browser stats as a reference for general browser usage needs to get knocked on the head a few times. That is a perfect example of biased results due to the nature of the sample.
A better number is about 62% [wikipedia.org].
Re:kind of makes you wonder (Score:3, Informative)