6,000 Web Sites Compromised to Target IE Vulnerability

By Channel Insider Staff  |  Posted 2008-12-15 Email Print this article Print


Re-Thinking HR: What Every CIO Needs to Know About Tomorrow's Workforce

Microsoft still developing on patch for vulnerability affecting all editions of Internet Explorer, but workarounds are available. Trend Micro says compromised Web sites will expose Web users to malicious code and compromise their PCs.

The number of Web sites compromised to host malicious code to explore a new discovered Internet Explorer vulnerability continues to rise as Microsoft continues to work on a permanent fix.

The vulnerability, discovered by Trend Micro, exploits a flaw in the widely used browser that enables malicious code—a Trojan or worm—to surreptitiously to download and compromise the host computer.

According to Trend Micro, more than 6,000 Web sites worldwide had been compromised with malicious code to exploit the IE vulnerability. Microsoft says less than .02 percent of Web users have encountered a compromised Web site, but acknowledged that the threat remains serious.

In lieu of a patch, solution providers should advise their clients to set their IE Internet security zone to "high" and disabling XML Island functionality.

READ eWeek REPORT: Hackers Compromise Legit Web Sites to Target Microsoft IE Flaw





Submit a Comment

Loading Comments...

Thanks for your registration, follow us on our social networks to keep up-to-date