Slashdot Mirror

← Back to Stories (view on slashdot.org)

Hackers Jump On Newest IE7 Bug

Posted by CmdrTaco on from the hop-on-pop dept.

CWmike writes "Attackers are already exploiting a bug in Internet Explorer 7 that Microsoft patched just last week, security researchers warned today. Although the attacks are currently in 'very, very small numbers,' they may be just the forerunner of a larger campaign, said Trend Micro's Jamz Yaneza. 'I see this as a proof-of-concept,' said Yaneza, who noted that the exploit's payload is extremely straightforward and explained that there has been no attempt to mask it by, say, planting a root kit on the victimized PC at the same time. 'I wouldn't be surprised to see this [exploit] show up in one of those Chinese exploit kits,' he added. The new attack code, which Trend Micro dubbed 'XML_Dloadr.a,' arrives in a spam message as a malicious file masquerading as a Microsoft Word document."

3 of 162 comments (clear)

  1. First by YAGNI · · Score: -1, Offtopic

    The first comment first comment ever!

  2. breaking news! by Anonymous Coward · · Score: -1, Offtopic

    Barack Obama is using FREE Open Source software! recovery.gov uses Drupal. Looks like this is the change we can believe in!

  3. Oh get over it by Viol8 · · Score: 0, Offtopic

    No one apart from uber nerds care - its just a word. Hoover were probably pissed that their name became the de facto name for vacuum cleaners too. Tough, deal.