Google Issues Security Alert for IE Users
Patch soon or you might get socially-hacked.
Google has issued security alerts to Windows users who using Internet Explorer as their main browser. IE, which in some cases is very tied into the operating system like Windows XP, is said to have been the target of politically-motivated attacks. According to Google reps, users of IE are open to attacks through a popular social networking site. Google declined to name the site specifically, but stood by its warning.
At this time, there is no permanent fix for the security hole, but Google heeds that users apply a temporary fix from Microsoft as soon as possible.
According to Microsoft, the security hole lies in the way IE handles MHTML, which could lead to an exploit disclosing private information.
Microsoft said in in its advisory:
Microsoft is investigating new public reports of a vulnerability in all supported editions of Microsoft Windows. The vulnerability could allow an attacker to cause a victim to run malicious scripts when visiting various Web sites, resulting in information disclosure. This impact is similar to server-side cross-site scripting (XSS) vulnerabilities.
Google said that it has deployed server-side changes to help combat the exploit:
To help protect users of our services, we have deployed various server-side defenses to make the MHTML vulnerability harder to exploit. That said, these are not tenable long-term solutions, and we can’t guarantee them to be 100% reliable or comprehensive. We’re working with Microsoft to develop a comprehensive solution for this issue.
Stay On the Cutting Edge: Get the Tom's Hardware Newsletter
Get Tom's Hardware's best news and in-depth reviews, straight to your inbox.
The MHTML exploit exists in all versions of Windows.
-
Trialsking I am totally shocked! A security alert for using IE!?!?!??! How could this be possible!?!?!?!!?Reply
/sarcasm -
Netherscourge Translation: Don't use IE9 when it comes out this week - use Google Chrome.Reply
AKA - A poorly veiled advertisement.
I'm no IE fan, but Google seriously needs to relax and just worry about their own products.
-
Netherscourge Also - why is Google afraid to say FACEBOOK?Reply
See, it's not that hard!
FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK FACEBOOK
Or more likely, Farmville? Everyone knows Farmville is compiling our Facebook status updates to brainwash our shopping tendencies. -
Anomalyx nebunit looks like google created the bug, lolLooks like you have no clue what you're talking about. Or didn't read the article at all. Or both.Reply
Clever advertising on Google's part, though. However, they failed to realize that people fall into one of 2 categories: 1) those who already don't use IE, and 2) those who don't care about security even if you were to hack their Facebook and send them a message from themselves. As long as they can water their crops, they don't care who has their passwords. -
someguynamedmatt Ciuywho the hell uses IE ????Everyday users who aren't computer savvy. Which makes up basically most of the general population.Reply -
xerroz Google are such weasels, what? they think I can see right through them? this is just publicity for their shitty google chrome browser and to shit on IEReply