EZ MSP Blog
DANGER! Vulnerability in Internet Explorer Not Patched Yet, No Fix for XP
Internet Explorer is one of the most used web browsers. Despite this, there have been various security problems with it, and another one has just been found - a zero-day vulnerability that leaves IE users at the mercy of hackers. We will cover what you need to know to keep your business safe.
The vulnerability, which can be found and exploited in Internet Explorer versions 6 through 11, has been the target of limited attacks. It is described by Microsoft as a remote code vulnerability in their official security advisory. The vulnerability allows hackers to take advantage of the way that Internet Explorer disposes of accessed files that have been deleted or moved someplace else. Hackers can corrupt the memory of your PC and execute malicious code within the Internet Explorer browser, which then allows the hacker to make a special website to exploit this vulnerability and potentially take over your computer.
The worst part of this is that, as of April 29th, 2014, there hasn't been a patch issued.
Microsoft has made some suggestions to protect yourself while they are rooting out the problem. In order to keep your threat level to a minimum, do not use Internet Explorer at all until the problem is resolved. Internet Explorer might be a staple for your daily routine, but it is highly recommended that a different web browser, such as Google Chrome or Mozilla Firefox be used during this dangerous time.
Additionally, Microsoft has announced that, true to their word, they will not be releasing a patch for their Windows XP machines, and they recommend upgrading to a new operating system, such as Windows 7 and 8.1, as soon as possible. If you are stuck using Windows XP, you need to say goodbye to Internet Explorer and use an alternative browser.
It's no surprise that this attack happened after Microsoft stopped supporting Windows XP, and is likely the first in a series of many security holes to be found in the operating system. Microsoft's refusal to patch the operating system is essentially an ultimatum - upgrade your system, or continue to be at risk of security threats. As a responsible business owner, you need to make a difficult decision - keep Windows XP, or upgrade to a newer operating system.
For our clients on our managed IT platform, we will be applying the patch for post-XP machines as soon as Microsoft delivers it. We test, whitelist, and deploy all of Microsoft's updates for Windows for clients on our managed IT service.
EZ MSP can guide you in the process of upgrading your workstations to something more stable and secure. We understand that it's no cakewalk to re-evaluate your entire network, but it's something that needs to be done to prevent major risks to your security. We can also monitor your systems for you to ensure that nothing breaks through your defenses too easily. Call (914) 595-2250 today, and we'll help you find the best operating system for your company!