Microsoft Confirms IE Fault in Google China Hack
Hackers exploited Internet Explorer security flaw in Google attack.
On Thursday, security firm McAfee said that Operation Aurora, the attack that hit Google and multiple companies early in the week, was the result of a new, "not publicly known" vulnerability found in Microsoft's web browser, Internet Explorer.
Microsoft quickly admitted the flaw in TechNet blog post. Mike Reavey, director of Microsoft's security response team, wrote, "Based on our investigations into these attacks, as well as the investigations of others, we recently became aware that a vulnerability in Internet Explorer appears to be one of several attack mechanisms that were used in highly sophisticated and targeted attacks against several companies."
"Obviously, it is unfortunate that our product is being used in the pursuit of criminal activity," Reavey continued. "We will continue to work with Google, industry leaders and the appropriate authorities to investigate this situation."
In response, Microsoft has published a security advisory that advises users to turn up the security settings in their Internet Explorer software until a further update can be issued.
"Our teams are currently working to develop an update and we will take appropriate actions to protect our customers," Reavey added. The post pointed out that Microsoft has no indication that the company's corporate network or mail properties were attacked as part of the recent attacks.

Before blaming the homeowner for not having the latest and greatest locks on his doors I would still blame the burglar first for breaking in. If we start diverting the blame onto the wrong party then good luck when you become the victim.
As I have said it before, any PC/OS and any browser is only as smart as it's user. If the user is evil, the PC becomes "evil" as well.
Come on people! Vote for Change!
can we still trust ms ie8?
Before blaming the homeowner for not having the latest and greatest locks on his doors I would still blame the burglar first for breaking in. If we start diverting the blame onto the wrong party then good luck when you become the victim.
As I have said it before, any PC/OS and any browser is only as smart as it's user. If the user is evil, the PC becomes "evil" as well.
But clearly, it is IE's fault exclusively.
I hate the IE user experience. It's typical Microsoft software - heavy handed, bloated, and buggy. I like Firefox, but, prefer Opera. I expect with Firefox getting so much market share, it might become a more attractive target.
Is it too late to let the Japanese take over China, instead of preventing it? For the life of me, I don't know why we coddle this country that is intent on undermining us. As Winston Churchill said, appeasement is like feeding a crocodile hoping he'll eat you last. We need to start making them pay for their nonsense. Otherwise, why will they stop? It's like feeding a Tiger steak, and hoping it will become a vegetarian.
Half the idiot voters in the USA are mind numb idiot lemmings and voted for change in our President from Kenya and look what it got us, Socialism.
That is a pretty bad excuse for using it. You are trading less security for being harder to find? This does not bode well if anyone deliberately targets you.
Oh no you didn't do that
http://en.wikipedia.org/wiki/Sino-Indian_War
http://en.wikipedia.org/wiki/Invasion_of_Tibet_(1950%E2%80%931951)
http://en.wikipedia.org/wiki/Sino-Vietnamese_War
http://en.wikipedia.org/wiki/People%27s_Liberation_Army_invasion_of_Xinjiang_(1949)
http://en.wikipedia.org/wiki/1987_Sino-Indian_skirmish
http://en.wikipedia.org/wiki/Chola_incident
http://en.wikipedia.org/wiki/Sino-Soviet_border_conflict
Know history much? Or just burying your head in the sand...