Attacks to be targeted against Internet Explorer users

G Data expects a wave of attacks similar to the "Aurora" exploit

Bochum, 10. March 2010

In its latest security warning Microsoft has warned that versions 6 and 7 of its Internet Explorer browser have a weak point. The attack scenario may well appear similar to the use of the so-called "Aurora" exploit at the start of the year. Attackers could, under certain circumstances, execute harmful commands on the attacked PC. Currently these attacks are only being carried out in targeted, isolated incidents. Nevertheless, G Data expects that the attackers will now adapt the exploit to start widely distributed attacks.

Ralf Benzmüller, manager of G Data Security Labs: "Recently exploit codes have been ever increasingly and more quickly modified and used. In the near future, we expect these existing security holes to be massively exploited. The situation is particularly explosive because Internet Explorer 7 is still widely distributed on PCs and consequently we are expecting a large number of possible Windows PC infections."

To find out which browser version you are using:
In the Internet Explorer menu bar, click on "Help" and then on "About Internet Explorer".

Versions of Internet Explorer (IE) affected:

Internet Explorer 6
Internet Explorer 7

Unaffected IE version:

Internet Explorer 8

What can you do to protect yourself?
Windows users should upgrade to Internet Explorer 8 as this is not affected by the existing security hole or stop using IE 6 or 7. Instead G Data recommends use of an alternative browser, e.g. Mozilla Firefox, Google Chrome, etc.

In general, users should use an Internet security package which continuously checks all http traffic for computer malware and incorporates an integrated firewall. Additionally, the operating system and the installed software should always be updated to the latest version.

Advanced analyses will follow shortly in the G Data SecurityBlog: blog.gdatasoftware.com

<- Back to: News