Have you opened all of your Christmas presents yet? Microsoft’s biggest present was a huge security headache that hit them just before Christmas. On December 22nd, Microsoft was forced to warn everyone that Windows users are now vulnerable to a flaw in all versions of Internet Explorer. This flaw, known to take advantage of specially formatted CSS (web page code), doesn’t have an easy fix.
So far, nobody has detected hackers using an exploit based on this zero-day CSS flaw. However, an exploit has been published and even included in the Metasploit security defense suite. That means that it’s only a matter of time before Microsoft’s problem becomes a problem for all users of Internet Explorer. Microsoft has promised that they are working in a fix for this flaw. Will it get here in time to save us from thousands of hacked home computers?
Here’s my suggestion to all of those using Internet Explorer:
Download and install a different web browser such as Firefox, Chrome or Opera. Only use Internet Explorer if it’s absolutely needed. Once you’ve done that, you can patiently wait on Microsoft to fix this problem.
Affected Operating Systems: Windows XP, Vista, 7
Affected Browsers: IE6, 7, 8, 9