Don't Visit Websites With Microsoft IE
from the as-if-you-didn't-know-this-was-coming... dept
It really is getting ridiculously dangerous these days for anyone to keep using Microsoft IE. People always talk about the day when scammers will start to use "zero day exploits" to smash through security holes before they're patched, and that's clearly already happening. The latest move, which is fairly advanced (and many assume is being done by organized crime groups in Eastern Europe) is to hack into a variety of popular company websites and install some code to exploit a known IE vulnerability that has not been patched by Microsoft. Once this is done, any IE user visiting any of these websites (which they obviously would assume to be safe based on the companies involved) ends up with some of the most insidious keylogging spyware. The article won't list the companies, but from the descriptions they sound like sites anyone might visit on a regular basis (banks, auction sites and comparison shopping engines). This sounds quite similar to the Interland hack from last year, but could impact many more users.