Language Selection

English French German Italian Portuguese Spanish

Finally some real coverage of MS

Filed under
News

Microsoft warns of serious computer security hole

SAN JOSE, Calif. -

Microsoft Corp. has taken the rare step of warning about a serious computer security vulnerability it hasn't fixed yet.

The vulnerability disclosed Monday affects Internet Explorer users whose computers run the Windows XP or Windows Server 2003 operating software.

It can allow hackers to remotely take control of victims' machines. The victims don't need to do anything to get infected except visit a Web site that's been hacked.

Security experts say criminals have been attacking the vulnerability for nearly a week. Thousands of sites have been hacked to serve up malicious software that exploits the vulnerability. People are drawn to these sites by clicking a link in spam e-mail.

The so-called "zero day" vulnerability disclosed by Microsoft affects a part of its software used to play video. The problem arises from the way the software interacts with Internet Explorer, which opens a hole for hackers to tunnel into.

Microsoft urged vulnerable users to disable the problematic part of its software, which can be done from Microsoft's Web site, while the company works on a "patch" — or software fix — for the problem.

Microsoft rarely departs from its practice of issuing security updates the second Tuesday of each month. When the Redmond, Wash.-based company does issue security reminders at other times, it's because the vulnerabilities are very serious.

A recent example was the emergency patch Microsoft issued in October for a vulnerability that criminals exploited to infect millions of PCs with the Conficker worm. While initially feared as an all-powerful doomsday device, that network of infected machines was eventually used for mundane moneymaking schemes like sending spam and pushing fake antivirus software.

http://tech.yahoo.com/news/ap/20090707/ap_on_hi_te/us_tec_microsoft_security

More in Tux Machines

today's howtos

Linux and Linux Foundation

KDE and GNOME

Debian Family

  • Devuan GNU/Linux 1.0.0 "Jessie" Just Around the Corner, Release Candidate Out
    It's been five almost five months since the developers behind the Debian-based Devuan GNU/Linux operating system launched the second Beta version towards the first stable release of the OS, and they now announced the Release Candidate. The Devuan project continues its vision of providing a libre Debian fork without using the systemd init system, and the Release Candidate (RC) version brings the GNU/Linux distribution closer to a final release. The interesting fact is that this RC appears to be stable enough to be used for production work.
  • Budgie 10.3 Released, Here’s How to Install it on Ubuntu
    A new version of the Budgie desktop is available to install on Ubuntu. Budgie 10.3 adds a new Alt+Tab switcher, and brings a stack of bug fixes to the table.
  • Ubuntu 17.10 Codename Released "Artful Aardvark"
  • openHAB
    Partners Canonical, openHAB Foundation and Azul Systems have collaborated hard to drive development of the new openHAB 2.0 smart-home platform as a snap package. An alternative to Apple Homekit and Samsung SmartThings, openHAB from openHAB Foundation is completely free and open source, and acts as a control hub for home IoT setups.