Microsoft often releases patches and hotfixes but todays press release regarding a major security flaw in their Internet browser was more vocal than their usual “Apply this update”. Earlier today, they released an offical response to fears regarding security concerns on Internet Explorer and has provided advice to its customers so as to minimise security risks when accessing the internet.
The statement reads:
“Microsoft is investigating new public reports of attacks against a new vulnerability in Internet Explorer. Our initial investigation has shown these limited attacks are targeting customers using Internet Explorer 7, however the vulnerability affects all currently supported versions of Internet Explorer.
“We are actively investigating this vulnerability and upon completion of this investigation, Microsoft will take the appropriate action to protect our customers, which may include providing a solution through our monthly security update release process, or an out-of-cycle security update, depending on customer needs.
“Microsoft continues to encourage customers to follow the “Protect Your Computer” guidance of enabling a firewall, applying all software updates and installing anti-virus and anti-spyware software. Additional information can be found at Security at home.
1. Good practice is to always keep your anti-virus software up to date
2. Run IE 7 in protected mode (this is a by default in Vista but not in XP)
3. Set your internet zone security on high
4. Set Windows Update to default.”
Alternatively, you might consider alternative browsers until the update is available for download….