Excerpt From: CBC News, April 28, 2014
The U.S. Department of Homeland Security advised computer users to consider using alternatives to [all] Microsoft Corp's Internet Explorer browser[s] until the company fixes a security flaw that hackers have used to launch attacks.
The bug is the first high-profile security flaw to emerge since Microsoft stopped providing security updates for Windows XP earlier this month. That means PCs running the 13-year old operating system could remain unprotected against hackers seeking to exploit the newly uncovered flaw, even after Microsoft figures out how to defend against it.
The United States Computer Emergency Readiness Team, a part of Homeland Security known as US-CERT, said in an advisory released on Monday morning that the vulnerability in versions 6 to 11 of Internet Explorer could lead to "the complete compromise" of an affected system.
"We are currently unaware of a practical solution to this problem," Carnegie Mellon's Software Engineering Institute warned in a separate advisory, that US-CERT linked to in its warning.
Microsoft disclosed on Saturday its plans to fix the bug in an advisory to its customers posted on its security website, which it said is present in Internet Explorer versions 6 to 11. Those versions dominate desktop browsing, accounting for 55 percent of the PC browser market, according to tech research firm NetMarketShare.
Read the full article here: CBC News