Another Exploit Targets IE7 Bug [updated]

[Update: The SANS Internet Storm Center has confirmed reports of this exploit being used in the wild. While current usage relies on MS Word documents, drive-by-attacks are possible. Remediation: apply MS patches. SANS ISC Diary entry ]

In case you needed yet another reason to apply patches, read this short but well illustrated article from TrendMicro about an active threat vector fixed by MS09-002.

Another solution? Use an alternative browser - Firefox + NoScript is one of the best security combos curently available.

Src: Another Exploit Targets IE7 Bug | Trend Micro

No comments: