Microsoft issues emergency update to fix critical IE flaw under active exploit

Adjust Comment Print

In a community post, Microsoft's Hari Pulapaka details the features of Windows Sandbox: 'How many times have you downloaded an executable file, but were afraid to run it? Nevertheless, Microsoft is now bringing the, now heavily outdated, browser with Windows 10 for legacy websites.

Let's face it, the Internet is a scary place and we know that malicious actors commonly release programs or compromise existing ones to perform malicious behavior when the program is installed.

According to Microsoft, attackers are already exploiting the vulnerability, making it a classic "zero-day" bug. With this type, a hacker somewhere on the internet can remotely access your computer and execute commands that would ordinarily be restricted to a local user. The Redmond-based tech firm has confirmed that it has found a "critical" vulnerability in its Internet Explorer. Just one errant click could have disastrous results, which is why many people who aren't entirely comfortable with technology are so reluctant to try anything they haven't done before on their personal computers.

Understanding Ruth Bader Ginsburg's cancer surgery
Flores, who was not involved in Ginsburg's treatment, said her quality of life should not diminish because of a missing lobe. Ginsburg later expressed regret for her comments, saying "judges should avoid commenting on a candidate for public office".

'Aquaman' star Jason Momoa added to Wizard World New Orleans
Pictures and DC Films have released new spoiler-filled b-roll footage for Aquaman , which will arrive in theaters on December 21. Aquaman director, James Wan , says that he will be the only person to blame if the film doesn't succeed.

YouTube star Danish Zehen passes away in vehicle accident in Mumbai
His fans were shocked when they came to know about his death and paid their last respects on social media. Danish also reviewed and promoted a number of brands as part of being a social media influencer.

Microsoft said if the user is logged on with administrative rights, an attacker could use the vulnerability to effectively take control of the user's entire PC. After doing so, the attacker could then install malware on the target PC; view, edit, and delete data; and create new accounts with full user rights. The patch is what your IT guys are doing in the background to fix vulnerabilities in software that are known to the manufacturers, and to attempt to fix the vulnerability before hackers can exploit it. Narang works for Tenable, a company that focuses on detecting cybercrime. Narang advises everyone to provide their system with the latest security updates as soon as possible.

The next major Windows 10 update (codenamed 19H1) is scheduled for spring 2019. In addition to Windows 7, the vulnerability is also present in Windows 10, but also in specific versions of Windows Server. Have you ever been in a situation which required a clean installation of Windows, but didn't want to set up a virtual machine?

Comments