A vulnerability in Microsoft’s popular Internet Explorer web browser can allow a “remote, unauthorized attack” on users’ computers, the company announced over the weekend via a Service Advisory. Although it is working to fix the problem, the company suggests “workarounds.
Better Business Bureau emphasizes that these sort of exploits are the main reason to keep software up-to-date and apply operating system patches and updates when they are released.
Meanwhile, the U.S. Computer Emergency Readiness Team, a division of the Department of Homeland Security, is urging computer users to employ Microsoft’s Enhanced Mitigation Experience Toolkit (EMET) if possible, or temporarily switch to a different browser until an official update is made available.
The “use-after-free” vulnerability can allow remote attackers to install code on a user’s computer without authorization. Versions 6 through 11 of Internet Explorer (IE) are vulnerable, and users who still have the Windows XP operating system are at greater risk because the company is no longer supporting the product.
Better Business Bureau is joining with security experts in recommending that IE users take the following steps:
Download the EMET on your computer for additional protection (although it may not mitigate this particular vulnerability);
Temporarily switch to a different web browser, such as Google’s Chrome or Mozilla’s Firefox.
Disable Adobe Flash, as the attack may not work without it.
Windows XP users should upgrade their operating system or disconnect the computer from the Internet, as the company no longer supports this version of Windows.
Founded in 1928, BBB Serving Connecticut is an unbiased, non-profit organization that sets and upholds high standards for fair and honest business behavior, and is one of 112 local, independent BBBs across North America.
For more than 100 years, Better Business Bureau has been helping people find businesses, brands and charities they can trust. In 2013, people turned to BBB more than 132 million times for BBB Business Reviews on more than 4.5 million businesses and Charity Reports on 11,000 charities, all available for free at bbb.org.