Slashdot Mirror


Web Site Attacks Against Unpatched IE Flaw Spike

An anonymous reader wrote to mention a Washingtonpost.com article about an increase in attacks against IE users via a critical, unpatched flaw. The bug allows software to be downloaded to the vulnerable PC even if the only act the user takes is browsing to a web site. From the article: "[A] password-stealing program landed on the Windows PC belonging to Reaz Chowdhury, a programmer for Oracle Corp. who works out of his home in Orlando, Fla. Chowdhury said he's not sure which site he browsed in the past 24 hours that hijacked his browser, but he confirmed that the attackers had logged the user name and password for his company's virtual private network (VPN)."

5 of 268 comments (clear)

  1. Patch released! by spaztik · · Score: 5, Funny
  2. "... said he's not sure which site he browsed..." by UberOogie · · Score: 5, Funny

    *cough*porn*cough*

    --
    "Enough of this wretched, whining monkey life." -- Marcus Aurelius, _Meditations_, Book 9, 37
  3. Ugh by ZombieRoboNinja · · Score: 5, Funny

    I know this is Slashdot, but can we at least have our grammar Nazis spell "grammatically" correctly?

  4. Was the City of Tuttle, Oklahoma... by sharkey · · Score: 5, Funny

    one of the sites that has been "hacked" to exploit this flaw?

    --

    --
    "Outlook not so good." That magic 8-ball knows everything! I'll ask about Exchange Server next.
  5. Re:Ugh by Anonymous Coward · · Score: 5, Funny

    That's why they lost WW2.