Attackers exploit un-patched flaw in IE 8

Microsoft on Friday confirmed a previously unknown vulnerability in Internet Explorer 8 that is believed to have been used to target people from the nuclear energy industry.

Microsoft has confirmed its popular IE 8 browser is vulnerable to attacks that can be launched from a compromised website. Successful exploitation can give the attacker complete control over a machine, depending on the victim’s user rights on the device. 

One of at least nine hacked legitimate sites hosting the IE 8 zero day exploit was the Department of Labor’s “Site Exposure Matrices” website, according to security firm AlienVault, one of the first to report the attacks.

Register or Login to continue

This article is only available for subscribers. Sign up now for free and get free access to premium content from ARN, CIO, CSO, CMO, Computerworld, and PC World.

[[ message ]]
[[ message ]]

Tags MicrosofthackattacksIE 8exploitsvulnerabilityAlienVaultDOL ( Department of labor)

Show Comments