Major IE Vulnerability

[Pete C]

This was posted prominently on my bank's login page. Does anybody have more info?:

Recently a new flaw was discovered in Microsoft's Internet Explorer browser, this flaw can have serious ramifications for all Internet users who use this browser. The flaw allows the owner of a website to create a page that will download and run programs on the user's computer. The user does not have to do anything but visit the website and unknowingly view the malicious page.

This means the owner of the website could install malicious software that would take control of the user's computer and steal personal information that could lead to identity theft. Microsoft, at the time of this writing, does not have a fix or patch to correct this flaw. We recommend that all concerned individuals ensure that they have up-to-date anti-virus and anti-spyware solutions installed on their computers for personal protection.

Currently, the only work-around is to temporarily discontinue the use of Microsoft Internet Explorer and use another browser until Microsoft can issue a patch or fix.

[GoodSpeak]

Thanks for the info, Pete.

Now, I have installed on my machine Norton Anti-Viurus and Anti-Spyware...would this do the trick?

[Dr Dave]

Mozilla Firefox is a great product. Everybody oughta use it.

[bluenoter]

Pete--

I just looked around, and I see no similar warning of any problem that's either new or that pervasive and general. My guess is that your bank's login page has been hijacked or Worm-infested. Is the URL that is displayed still legit? When you log in, do you get the little security lock and the https:// prefix? (Or maybe you're afraid to log in!)

If I were you, I'd call the bank (maybe tomorrow), get put through to someone on their website team, and ask.

[moneyp]

I haven't read anything about a major IE exploit. But as the good doctor says, you should all be using Firefox anyway.

[Enforcer]

I don't miss IE at all. And I'm not big on the "alternative software" bandwagon at all. I couldn't give a f**k less if Bill Gates ruins the world. But Firefox is way better.

[Scott Dolan]

If anybody is worried about this possible exploit, I highly suggest Webroot's Spy Sweeper. I was so impressed by the trial version that I went ahead and bought the program.


Worth its weight in gold.

[Dan G]

Whenever I see things about identity theft and computers, it makes me wonder what kind of information do people keep on their computer.

I do on-line banking, but don't let it set a cookie to keep my access number. I never let windows do that stupid "save password" thing it wants to. For any site that has any financial or personal information (even ebay), I log in fresh every time. On this site do I let it keep me logged in, but I also clear my cookies and cache at the end of each day.

And I don't have a file with personal info, cc#s, driver's licence#, etc. Sure, there might be letters I've written to banks or something that has some personal info, but it would probably take a lot of scanning for a program to find anything of value. Even my CV doesn't have my social insurance # on it.

Do other people actually have a bunch of info on their computer (either home or work) that would open them up to identity theft?

[Pete C]

Quote:

Originally Posted by bluenoter

When you log in, do you get the little security lock and the https:// prefix?

Yes.

[Deadlift]

Quote:

Originally Posted by Dr Dave

Mozilla Firefox is a great product. ...

As is Opera

[Tom Storer]

Quote:

Originally Posted by Dan G

Do other people actually have a bunch of info on their computer (either home or work) that would open them up to identity theft?

I probably do have a lot of personal information on my computer--don't think about it much since identity theft seems to be rare in Europe (cf. this article). But your post makes me think I should probably go through and make sure there isn't anything usable by bad guys.

[Tom Marcello]

Quote:

Originally Posted by GoodSpeak

Thanks for the info, Pete.

Now, I have installed on my machine Norton Anti-Viurus and Anti-Spyware...would this do the trick?

When a virus totally destroyed my last PC with all of the above installed (and constantly updated ), that's when I changed to a Mac.

Unless you're doing accounting on your computer, why would you have anything else?

[Gary Sisco]

I gave paypal a bank account number so I could use it and then immediately closed the account and use the credit card option instead. Works well so long as you remember not to hit the pay button before going through the extra four or five steps. I did that once and had to open another account and then close it again.

All they'll find on my hard drive is old email from friends and horse pictures.

[clinthopson]

IE is a lousy browser which, even though it can only open one site at a time, takes up a great deal of your computer resourses. It also make you very vulnerable.

Some sites will not respond to other browsers like the very superior Firefox. When I run into them, I raise hell with the sponsor. It has done some good.

Oh well, it's about time for Microsoft to come out with another attempt to rule the world.

[Scott Dolan]

IE is just fine. You just have to know how to set it up.

[RBS]

There's a great software tool with the name of "Hijack This."

You run it on your computer and it shows you which programs are running.

If you don't want something on there, you go into Safe Mode and simply delete it.

I found about it on this website:

http://www.techguy.org/

I don't consider myself an expert on viruses and trojans and security problems, but I was able to get rid of this proliferating trojan/adware on my computer.

And it's by donation only.

[bluenoter]

Quote:

Originally Posted by clinthopson

IE is a lousy browser which, even though it can only open one site at a time . . .

Why do you think that? And if you want to view more than one site, that's what windows are for.

[Scott Dolan]

You don't have to go into safe mode, you can just have hijack this remove it from your system.

[Scott Dolan]

Quote:

Originally Posted by bluenoter

Why do you think that? And if you want to view more than one site, that's what windows are for.

Yep.

And you are still using a much older version, correct?

[bluenoter]

Quote:

Originally Posted by Scott Dolan

Yep.

And you are still using a much older version, correct?

Windows 98SE but IE 6.0 something.

[RBS]

Quote:

Originally Posted by Scott Dolan

You don't have to go into safe mode, you can just have hijack this remove it from your system.

I think you're right, but for certain trojans, adware and viruses, it's best to go into Safe Mode because they can go into "stealth mode" when you're trying to remove them.

At least that's what I found for this stupid WinFix/Vitrumondo problem.

[Vince Kargatis]

Quote:

Originally Posted by bluenoter

Why do you think that? And if you want to view more than one site, that's what windows are for.

Just curious if you've tried tabbed browsing yet, Rita. I happen to have 10 sites open (in Firefox, one window, ten tabs) - I am very glad that doesn't add 10 to my other 20 app-windows I do have open on my desktop atm.

[Scott Dolan]

Ah.

I thought I remembered you having much trepidation about upgrading your IE.

[bluenoter]

Wow--what a memory! I did, but I got over it.

[bluenoter]

Quote:

Originally Posted by Vince Kargatis

Just curious if you've tried tabbed browsing yet, Rita. I happen to have 10 sites open (in Firefox, one window, ten tabs) - I am very glad that doesn't add 10 to my other 20 app-windows I do have open on my desktop atm.

I don't know what you mean. Right now I have two windows open. I'm looking at this site, and the other site is waiting in the form of a--tab?--sitting at the bottom of the screen, which is where my systems tray is.

[Cem]

Each IE window draws on resources equally and additionally, I believe. Mozilla Firefox has tabs -as in file folder tabs- for each window (but in the same window) that draw much less and are far more efficient and easy to work with.

[Scott Dolan]

Quote:

Originally Posted by RBS

I think you're right, but for certain trojans, adware and viruses, it's best to go into Safe Mode because they can go into "stealth mode" when you're trying to remove them.

At least that's what I found for this stupid WinFix/Vitrumondo problem.

Hell, you could've just downloaded Spy Sweeper to fix that.

[Scott Dolan]

Quote:

Originally Posted by bluenoter

Wow--what a memory! I did, but I got over it.

I have a memory like a steel trap. Plus, I'm a font of useless knowledge.

[groover]

I prefer Advanced Browser or Avant Browser, both of which support tabbed windows. However, I'm not sure if they are immune from the security flaw, since they may actually be using the IE engine "under the hood".

Firefox may be calling the IE engine, also. The only way to be sure is to completely uninstall IE and see if the other browser still works.

[Pete C]

Quote:

Originally Posted by bluenoter

I don't know what you mean. Right now I have two windows open. I'm looking at this site, and the other site is waiting in the form of a--tab?--sitting at the bottom of the screen, which is where my systems tray is.

No, that's not tabs. With tabs you'd have one app showing at the bottom, and when you maximize it multiple windows would be available via tabs.