Serious security flaw found in IE

[Fop 1]

Serious security flaw found in IE

Internet Explorer is used by the vast majority of the world's computer users

 

Users of the world's most common web browser have been advised to switch to a rival until a serious security flaw has been fixed.

 

The flaw in Microsoft's Internet Explorer could allow criminals to take control of people's computers and steal their passwords, internet experts say.

 

Microsoft is investigating the problem and preparing an emergency software patch to resolve it, it says.

 

Internet Explorer is used by the vast majority of the world's computer users.

 

"Microsoft is continuing its investigation of public reports of attacks against a new vulnerability in Internet Explorer," said the firm in a security advisory alert about the flaw.

 

Microsoft says it has detected attacks against version seven of the browser - its most widely used edition.

 

But the company warned that other versions were also potentially vulnerable.

 

As many as 10,000 websites have been compromised since last week to take advantage of the security flow, said antivirus software maker Trend Micro.

 

The websites have been mostly serving up programs that steal computer game passwords, but the flaw could be "adopted by more financially motivated criminals", a Trend Micro security researcher said on Monday.

http://news.bbc.co.uk/1/hi/technology/7784908.stm

 

If you're still daft enough to be using IE, perhaps now is the time to expand your horizons.

[Fop 1]

MICROSOFT SECURITY ADVICE

Change IE security settings to high (Look under Tools/Internet Options)

Switch to a Windows user account with limited rights to change a PC's settings

With IE7 or 8 on Vista turn on Protected Mode

Ensure your PC is updated

Keep anti-virus and anti-spyware software up to date

Pray

 

 

SENSIBLE SECURITY ADVICE

Install Firefox, Opera, Chrome, Safari, as they not vulnerable to the flaw Microsoft has identified.

 

 

[Happy Face 29]

Trend Micro used to supply Microsofts anti-virus software until they got kicked to the curb for Windows Live OneCare. They also did message scans on hotmail before Mcafee got the gig this year.

 

Not surprising they jump on any opportunity to have a pop.

Edited December 16, 2008 by Happy Face

[Park Life 71]

MICROSOFT SECURITY ADVICE

Change IE security settings to high (Look under Tools/Internet Options)

Switch to a Windows user account with limited rights to change a PC's settings

With IE7 or 8 on Vista turn on Protected Mode

Ensure your PC is updated

Keep anti-virus and anti-spyware software up to date

Pray

 

 

SENSIBLE SECURITY ADVICE

Install Firefox, Opera, Chrome, Safari, as they not vulnerable to the flaw Microsoft has identified.

 

 

 

 

Which one to change to Fopper?

[Park Life 71]

MICROSOFT SECURITY ADVICE

Change IE security settings to high (Look under Tools/Internet Options)

Switch to a Windows user account with limited rights to change a PC's settings

With IE7 or 8 on Vista turn on Protected Mode

Ensure your PC is updated

Keep anti-virus and anti-spyware software up to date

Pray

 

 

SENSIBLE SECURITY ADVICE

Install Firefox, Opera, Chrome, Safari, as they not vulnerable to the flaw Microsoft has identified.

 

 

 

 

Which one to change to Fopper?

 

Firefox + noscript & adblock addons

 

Will do it today.

[Fop 1]

Trend Micro used to supply Microsofts anti-virus software until they got kicked to the curb for Windows Live OneCare. They also did message scans on hotmail before Mcafee got the gig this year.

 

Not surprising they jump on any opportunity to have a pop.

 

Identifying a major security flaw is hardly "having a pop". (although it may offend your Christian Neo-Con sensibilities, I agree)

 

 

 

 

 

 

But you're right that Microsoft would have preferred it kept quiet as they usually do and just let people get stung for about 18 months before they get around to "fixing" it.

 

But Microsoft counselled against taking such action.

 

"I cannot recommend people switch due to this one flaw," said John Curran, head of Microsoft UK's Windows group.

 

(never mind that it is rather a huge and dangerous "one" flaw)

[Fop 1]

Will do it today.

 

Aye, I think that's about the safest combo at the moment.

 

Probably the best thing about Firefox is the fix time, Microsoft can quite literally take years to "fix" (or just fudge) an issue in IE (which is why they prefer the don't speak option - with which today's big business internet fraud is frankly madness as the wrong people will know about it and be busy exploiting it for as long as it exists), whilst far from perfect either Firefox's team usually get onto even fairly minor things within a few weeks.

Edited December 16, 2008 by Fop

[ewerk 31600]

But Microsoft counselled against taking such action.

 

"I cannot recommend people switch due to this one flaw," said John Curran, head of Microsoft UK's Windows group.

 

(never mind that it is rather a huge and dangerous "one" flaw)

 

What did you expect him to say? 'Aye it's shite, I use Firefox meself'.

[Park Life 71]

Wot about dis?

"I use Firefox but there is an annoying problem with it for me. It can be working fine but then all of a sudden it says "Stopped" in the bottom left corner. It will then no longer allow you to use the internet. The PC won't shut down and needs to be rebooted by holding the power button down. My PC has sent loads of reports about this but it still hasn't been fixed by a patch. It doesn't just happen to me as I've found other people with the same problem by searching Google. There isn't a solution yet."

[Fop 1]

But Microsoft counselled against taking such action.

 

"I cannot recommend people switch due to this one flaw," said John Curran, head of Microsoft UK's Windows group.

 

(never mind that it is rather a huge and dangerous "one" flaw)

 

What did you expect him to say? 'Aye it's shite, I use Firefox meself'.

 

That's probably the truth.

 

 

 

 

 

 

 

But I'm just saying that just because Happy Face and Microsoft don't want you to know about this or for you to change your browser, doesn't mean that those courses of action are for the best (as much as they'd like you to think they are).

[Fop 1]

Wot about dis?

"I use Firefox but there is an annoying problem with it for me. It can be working fine but then all of a sudden it says "Stopped" in the bottom left corner. It will then no longer allow you to use the internet. The PC won't shut down and needs to be rebooted by holding the power button down. My PC has sent loads of reports about this but it still hasn't been fixed by a patch. It doesn't just happen to me as I've found other people with the same problem by searching Google. There isn't a solution yet."

 

Either Happy Face or Bill Gates wrote it.

[Happy Face 29]

Wot about dis?

"I use Firefox but there is an annoying problem with it for me. It can be working fine but then all of a sudden it says "Stopped" in the bottom left corner. It will then no longer allow you to use the internet. The PC won't shut down and needs to be rebooted by holding the power button down. My PC has sent loads of reports about this but it still hasn't been fixed by a patch. It doesn't just happen to me as I've found other people with the same problem by searching Google. There isn't a solution yet."

 

Either Happy Face or Bill Gates wrote it.

 

Aye, a grudge against firefox is personal and petty. A grudge against Microsoft is just and noble.

 

I use Firefox outside of work btw.

Edited December 16, 2008 by Happy Face

[Fop 1]

Wot about dis?

"I use Firefox but there is an annoying problem with it for me. It can be working fine but then all of a sudden it says "Stopped" in the bottom left corner. It will then no longer allow you to use the internet. The PC won't shut down and needs to be rebooted by holding the power button down. My PC has sent loads of reports about this but it still hasn't been fixed by a patch. It doesn't just happen to me as I've found other people with the same problem by searching Google. There isn't a solution yet."

 

Either Happy Face or Bill Gates wrote it.

 

Aye, a grudge against firefox is personal and petty. A grudge against Microsoft is just and noble.

 

Who has a grudge against Microsoft? If they operated in a better manner there'd be no issues.

 

What is wrong is wrong, no matter how much money you have, just with enough money you can usually convince enough people what is wrong is right.

(which is, of course, at the very centre of US Christian Neo-Con principles - hence your issues with anyone questioning it )

 

 

 

I use Firefox outside of work btw.

You're supporting the commies!!

[Park Life 71]

[Happy Face 29]

Wot about dis?

"I use Firefox but there is an annoying problem with it for me. It can be working fine but then all of a sudden it says "Stopped" in the bottom left corner. It will then no longer allow you to use the internet. The PC won't shut down and needs to be rebooted by holding the power button down. My PC has sent loads of reports about this but it still hasn't been fixed by a patch. It doesn't just happen to me as I've found other people with the same problem by searching Google. There isn't a solution yet."

 

Either Happy Face or Bill Gates wrote it.

 

Aye, a grudge against firefox is personal and petty. A grudge against Microsoft is just and noble.

 

Who has a grudge against Microsoft? If they operated in a better manner there'd be no issues.

 

What is wrong is wrong, no matter how much money you have, just with enough money you can usually convince enough people what is wrong is right.

(which is, of course, at the very centre of US Christian Neo-Con principles - hence your issues with anyone questioning it )

 

 

I think you'll find I am the one questioning things by looking at the people who advise changing browser in your posted article.

 

You're the one who edits out detail to fit your agenda, the article continues at the BBC...

 

PC Pro magazine's security editor, Darien Graham-Smith, said "Every browser is susceptible to vulnerabilities from time to time. It's fine to say 'don't use Internet Explorer' for now, but other browsers may well find themselves in a similar situation,".

[Fop 1]

You're the one who edits out detail to fit your agenda, the article continues at the BBC...

 

PC Pro magazine's security editor, Darien Graham-Smith, said "Every browser is susceptible to vulnerabilities from time to time. It's fine to say 'don't use Internet Explorer' for now, but other browsers may well find themselves in a similar situation,".

You'll find when I posted this that was the entire article, since then they've obviously added too it (probably from their dot.life section).

 

Although interestingly other browsers don't.

 

Not only because IE is still paying for MS very slapdash programming methods which invite security breaches, but also (as mentioned) because of the way MS refused to acknowledge issues and then take so long dealing with them.

The other main browser all deal with potential and actual threats in a much more timely manner than MS (ironically sometime seeming to have more threats, but only because they actively identify and deal with them - as opposed to the head and sand method ).

 

So again the only sensible option is to NOT use Internet Explorer (well not unless you want some Nigerian/Chinese/Russian criminal exploring your hard drive too ).

 

 

 

Wot about dis?

"I use Firefox but there is an annoying problem with it for me. It can be working fine but then all of a sudden it says "Stopped" in the bottom left corner. It will then no longer allow you to use the internet. The PC won't shut down and needs to be rebooted by holding the power button down. My PC has sent loads of reports about this but it still hasn't been fixed by a patch. It doesn't just happen to me as I've found other people with the same problem by searching Google. There isn't a solution yet."

 

Either Happy Face or Bill Gates wrote it.

 

Aye, a grudge against firefox is personal and petty. A grudge against Microsoft is just and noble.

 

Who has a grudge against Microsoft? If they operated in a better manner there'd be no issues.

 

What is wrong is wrong, no matter how much money you have, just with enough money you can usually convince enough people what is wrong is right.

(which is, of course, at the very centre of US Christian Neo-Con principles - hence your issues with anyone questioning it )

 

 

I think you'll find I am the one questioning things by looking at the people who advise changing browser in your posted article.

 

Nope, you're just towing the line as usual, and spreading disinformation to support your kind.

 

The vulnerability exists and is very, very dangerous (you may as well set up your computer outside your house and leave it for a few days in relative vulnerability).

 

It's not some scam, it's a reality, as much as you and your Christian Neo-Con ilk might like it to be a scam.

[Happy Face 29]

Although interestingly other browsers don't.

 

And you're guaranteeing they won't?

[Park Life 71]

Although interestingly other browsers don't.

 

And you're guaranteeing they won't?

 

The god card played too early imo.

[Happy Face 29]

You'll find when I posted this that was the entire article, since then they've obviously added too it (probably from their dot.life section).

 

More lies.

 

Page last updated at 09:20 GMT

[ewerk 31600]

The vulnerability exists and is very, very dangerous (you may as well set up your computer outside your house and leave it for a few days in relative vulnerability).

 

It's not some scam, it's a reality, as much as you and your Christian Neo-Con ilk might like it to be a scam.

 

You don't half talk some shite.

[Guest alex]

I bet fop did a sex wee when he found this article btw. I like Firefox fwiw.

[Fop 1]

Although interestingly other browsers don't.

 

And you're guaranteeing they won't?

 

Yes, both because they are largely built and integrated differently and like I said other browsers often have "more" identified vulnerabilities only because they actively search and fix them (unlike Microsoft which only tends admit something once it's already reached epidemic proportions) - so that's actually a good thing™.

[Happy Face 29]

Although interestingly other browsers don't.

 

And you're guaranteeing they won't?

 

Yes, both because they are largely built and integrated differently and like I said other browsers often have "more" identified vulnerabilities only because they actively search and fix them (unlike Microsoft which only tends admit something once it's already reached epidemic proportions) - so that's actually a good thing™.

 

Reads to me like "they definitely won't, but when they do..."

 

 

EDIT:

Edited December 16, 2008 by Happy Face

[Fop 1]

Although interestingly other browsers don't.

 

And you're guaranteeing they won't?

 

The god card played too early imo.

 

Christian Neo-Cons like their (false) implication of doom scary tactics.

 

You'll find when I posted this that was the entire article, since then they've obviously added too it (probably from their dot.life section).

 

More lies.

 

Page last updated at 09:20 GMT

 

Indeed it must be more lies because it was changed after I posted this.

 

The vulnerability exists and is very, very dangerous (you may as well set up your computer outside your house and leave it for a few days in relative vulnerability).

 

It's not some scam, it's a reality, as much as you and your Christian Neo-Con ilk might like it to be a scam.

 

You don't half talk some shite.

 

It may be shite, but it still true.

 

I bet fop did a sex wee when he found this article btw. I like Firefox fwiw.

 

In fairness an IE exploit like this comes up pretty often - what makes it even more relevant and absurd is that they still never fix it (long term - how can it still be in IE7? This sort of problem was first identified back in IE5) and that internet crime is moving to this sort of exploit in a BIG way presently. Mucho $$$$'s in it.

[Fop 1]

Although interestingly other browsers don't.

 

And you're guaranteeing they won't?

 

Yes, both because they are largely built and integrated differently and like I said other browsers often have "more" identified vulnerabilities only because they actively search and fix them (unlike Microsoft which only tends admit something once it's already reached epidemic proportions) - so that's actually a good thing™.

 

Reads to me like "they definitely won't, but when they do..."

 

 

EDIT:

 

 

That's because you don't understand what I'm saying. I can't help your being of a thick nature.

 

 

It's already been the case, FF2 has had more registered vulnerabilities before for one, yet it was always the more secure browser than any MS offering (before you stuck in 2 easy security addons never mind after).