New vulnerability identified in all versions of Internet Explorer

Earlier this week, the U.S. Department of Homeland Security released an advisory which urges computer users to consider using an alternative to Microsoft’s Internet Explorer browser (i.e. Chrome, Firefox, or Safari). A security firm disclosed a flaw in the browser over the weekend, saying hackers have already exploited it in attacks. This security flaw affects Internet Explorer versions 6 through 11.

Microsoft released an advisory, stating the vulnerability could allow a hacker to “take complete control of an affected system, and then do things such as viewing, changing, or deleting data; installing malicious programs; or creating accounts that would give hackers full user rights.”

Vantage Point will be working to update all systems under their management as soon as this fix is developed and released. However, we will not be able to update computers running Windows XP. As you know, Microsoft stopped supporting and updating Windows XP as of April 8, 2014. This means the patch will not apply to XP machines and they will remain vulnerable.

For more information, please see: http://www.cnet.com/news/new-zero-day-vulnerability-identified-in-all-versions-of-ie/

In the meantime, and in addition to using an alternate web browser, all the normal rules apply, and will prevent the vast majority of issues with this exploit:

  • Keep your antivirus software up to date (we do this for all PCs and servers under our management)
  • Be cautious with unknown websites
  • Be cautious when clicking on links in emails (i.e FedEx and UPS notices when you have not shipped anything)
  • Be cautious when opening email attachments

If you have any questions or concerns, please contact your Account Manager or call the office at 866-525-8324.

Please pass this information on to your colleagues and friends.