RJR Solutions Computer ConsultingBack to Tech Corner - RJR Solutions


Major security risk using ALL versions of Internet Explorer

SECURITY ISSUE
On Saturday, Microsoft released information that cybercriminals are exploiting an unpatched and critical vulnerability in Internet Explorer (IE) using "drive-by" attacks.  This affects ALL versions of Internet Explorer (IE) and ALL Microsoft Operating Systems.

A “drive-by” attack is when you are tricked into visiting a malicious or compromised website, and your browser is quickly hacked simply by pulling up the page.  These are among the most dangerous types of hacks since there is absolutely no protection.  Since this is a bug in Internet Explorer and not viruses, your existing protection is useless to these attacks and your system will be compromised.

PLAN OF ACTION
It is strongly recommended that you DO NOT USE INTERNET EXPLORER until Microsoft releases a fix, which may be over the next two weeks.  In the meantime, we are recommending you use Google Chrome or Mozilla FireFox.  However, if you rely on any websites for your business, such as banking, payroll, MLS, they may have a recommended browser other than IE.

SPECIAL NOTE TO WINDOWS XP USERS
Although all versions of Windows are affected, Windows XP users will not be getting any security updates, even after Microsoft fixes this issue.  However, if you must continue to use Windows XP and Internet Explorer, there are some enhanced security tools available from Microsoft’s website that can be installed and configured that can make it harder for these attacks to occur.  This package is called the Enhanced Mitigation Experience Toolkit 4.1 and available at http://www.microsoft.com/en-us/download/details.aspx?id=41138.

If you have any questions or would need help in changing your browser or upgrading your systems away from Windows XP in anticipation of the security fix, please contact our office via email at This email address is being protected from spambots. You need JavaScript enabled to view it. or phone.