On Patch Tuesday, Microsoft warns of zero-day attacks in IE

Share this article:
Separate of the patches it released, Microsoft on Tuesday warned of attacks underway that are targeting a zero-day vulnerability residing in XML Core Services, according to an advisory. The exploits are being launched against Internet Explorer users by tricking them, usually through a legitimate-looking email or instant messenger conversation, to visit a malicious website. Microsoft does not have a patch for the vulnerability, but as part of the advisory, it issued what Microsoft officials call "an effective workaround that stops would-be attackers from taking advantage of the issue via Internet Explorer."
Share this article:

Sign up to our newsletters

More in News

Report: UK police push for required mobile phone PWs

The Metropolitan Police have reportedly lobbied for two years to enact the standard.

JPMorgan Chase customers targeted in massive phishing campaign

JPMorgan Chase customers targeted in massive phishing campaign

Roughly 500,000 emails have been sent out so far as part of a massive multifaceted phishing campaign targeting customers of JPMorgan Chase.

Study: Organizations lack training, budget to thwart insider threats

Study: Organizations lack training, budget to thwart insider ...

Of the 355 IT and security professionals surveyed, a majority indicated that they were ill-equipped to thwart a possible insider threat.