On Patch Tuesday, Microsoft warns of zero-day attacks in IE

Share this article:
Separate of the patches it released, Microsoft on Tuesday warned of attacks underway that are targeting a zero-day vulnerability residing in XML Core Services, according to an advisory. The exploits are being launched against Internet Explorer users by tricking them, usually through a legitimate-looking email or instant messenger conversation, to visit a malicious website. Microsoft does not have a patch for the vulnerability, but as part of the advisory, it issued what Microsoft officials call "an effective workaround that stops would-be attackers from taking advantage of the issue via Internet Explorer."
Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

TOP COMMENTS

More in News

ISSA tackles workforce gap with career lifecycle program

ISSA tackles workforce gap with career lifecycle program ...

On Thursday, the group launched its Cybersecurity Career Lifecycle (CSCL) program.

Amplification DDoS attacks most popular, according to Symantec

Amplification DDoS attacks most popular, according to Symantec

The company noted in a whitepaper released on Tuesday that Domain Name Server amplification attacks have increased 183 percent between January and August.

Court shutters NY co. selling security software with "no value"

A federal court shut down Pairsys at the request of the Federal Trade Commission.