Attackers exploit un-patched flaw in IE 8

Microsoft on Friday confirmed a previously unknown vulnerability in Internet Explorer 8 that is believed to have been used to target people from the nuclear energy industry.

Microsoft has confirmed its popular IE 8 browser is vulnerable to attacks that can be launched from a compromised website. Successful exploitation can give the attacker complete control over a machine, depending on the victim’s user rights on the device. 

One of at least nine hacked legitimate sites hosting the IE 8 zero day exploit was the Department of Labor’s “Site Exposure Matrices” website, according to security firm AlienVault, one of the first to report the attacks.

Register or Login to continue

This article is only available for subscribers. Sign up now for free and get free access to premium content from ARN, CIO, CSO, CMO, Computerworld, and PC World.

[[ message ]]
Or
[[ message ]]
CSO WANTED
Have an opinion on security? Want to have your articles published on CSO? Please contact CSO Content Manager for our guidelines.

Tags MicrosofthackattacksIE 8exploitsvulnerabilityAlienVaultDOL ( Department of labor)

More about APTExposureFireEyeMicrosoft

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Liam Tung

Latest Videos

More videos

Blog Posts