Why are you still using IE?
If you are, here's one more reason for you to switch...
From this article
Major flaw revealed in Internet Explorer; users urged to switch
Tue Dec 16, 2008 11:49AM EST
The major press outlets are abuzz this morning with news of a major new security flaw that affects all versions of Internet Explorer from IE5 to the latest beta of IE8. The attack has serious and far-reaching ramifications -- and they're not just theoretical attacks. In fact, the flaw is already in wide use as a tool to steal online game passwords, with some 10,000 websites infected with the code needed to take advantage of the hole in IE.
Virtually all security experts (as well as myself) are counseling users to switch to any other web browser -- none of the others are affected, including Firefox, Chrome, and Opera -- at least for the time being, though Microsoft has stubbornly said it "cannot recommend people switch due to this one flaw." Microsoft adds that it is working on a fix but has offered no ETA on when that might happen. Meanwhile it offers some suggestions for a temporary patch, including setting your Internet security zone settings to "high" and offering some complicated workarounds. (Some reports state, however, that the fixes do not actually work.)
Expedient patching or switching are essential. Security pros fear that the attack will soon spread beyond the theft of gaming passwords and into more criminal arenas, as the malicious code can be placed on any website and can be adapted to steal any password stored or entered using the browser. It's now down to the issue of time: Will Microsoft repair the problem and distribute a patch quickly enough to head off the tsunami of fraud that's about to hit or will it come too late to do any good?
Meanwhile, I'll reiterate my recommendation: Switch from Internet Explorer as soon as you can. You can always switch back once the threat is eliminated.
PC Gaming News
Results 1 to 10 of 66
Thread: Why are you still using IE?
16-12-2008, 22:16 #1
Why are you still using IE?
16-12-2008, 22:20 #2You can always switch back once the threat is eliminated.
16-12-2008, 22:24 #3
Does it effect only when actually using IE?
I never use it, though MSN often boots it up because it's too stupid to recognize FF as the default browser :/
16-12-2008, 22:27 #4
I don't use IE except for windows updates.
I do know a bunch of people that do use it.
16-12-2008, 22:29 #5
I still use IE because GWO says I need to view the advertisements here as part of my membership.
16-12-2008, 22:34 #6
16-12-2008, 22:48 #7
I read about that too. Despite all the excitement, nobody has taken the time to explain to me why exactly this one security hole is so much more dire than all the others that came before it. It'll take a little more than that before I start panicking.
(And anyway, I never use it. :p)
16-12-2008, 22:59 #8
16-12-2008, 23:01 #9
I dunno if it's talking about the same flaw, but this would make me switch more then that (but since I use chrome anyway...)
One flaw not addressed in yesterday's Patch Tuesday is a heap overflow within the XML parser reported on Wednesday by Bojan Zdrnja of the SANS Internet Storm Center.
The exploit in the wild on Wednesday creates an XML tag, then waits 6 seconds in an attempt to thwart antivirus engines. The exploit could then crash the browser and run malicious code when the browser is restarted. The user must be running Windows XP or Windows Server 2003, and using Internet Explorer 7.
Zdrnja writes that "at this point in time, it does not appear to be wildly used, but as the code is publicly available, we can expect that this will happen very soon."
A Microsoft representative said the company is "investigating new public claims of a possible vulnerability in Internet Explorer. Once we're done investigating, we will take appropriate action to help protect customers. This may include providing a security update through the monthly release process, an out-of-cycle update, or additional guidance to help customers protect themselves."
As for a workaround, Zdrnja suggests using a browser other than Internet Explorer. Microsoft says anyone who has been affected by this exploit can get help online or by calling the PC Safety hotline at 1-866-PCSAFETY.
16-12-2008, 23:23 #10
never did like IE i like Firefox.. which i changed to 3 years ago after IE EPIC FAILED in starting up