Detecting zero-day vulnerabilities in Internet Explorer helps hackers gain control of the computer
The research team from Qihoo 360's security unit discovered a zero-day vulnerability (the term refers to unpublished or unresolved vulnerabilities) on Internet Explorer.
A group of hackers are actively exploiting this vulnerability to control computers running Windows operating systems.
This vulnerability infects Office documents containing malware downloaded from IE. Malware will infiltrate and control the "User Accounts" section of the operating system, and jump on pop-ups that cause the device to be paralyzed.
According to experts, this group of hackers are also "hard at work on their own" because very few people now use IE (only 17.55%, even lower than this number) and users also. Very wary when opening unidentified Office files.
Still, researchers are calling on Microsoft to release an emergency patch to fix the flaw, as a small number of people remain loyal to the browser, especially organizations, The agency still selects IE as the default browser on its system.
See more:
- Warning: Detecting more than 1000 Cisco router and switch devices in Vietnam has a serious security error
- Only charging the battery through a computer, your iPhone may also be hacked
- Facebook awards 1 billion VND for those who find new data holes
- Hackers attack the casino through a hole in the smart thermometer of the aquarium
You should read it
- Microsoft has not patched security issues in IE8 for 7 months
- The 7 most common problems in Internet Explorer
- Ways to uninstall Internet Explorer 8 on Windows XP / Vista / 7
- Internet Explorer has vulnerabilities, unused users are still hacked
- Detecting vulnerabilities in BitTorrent applications allows hackers to control user computers
- Instructions to remove Internet Explorer 10 in Windows 8
- How to enable Internet Explorer mode on Microsoft Edge
- Microsoft released a serious patch in IE9 and Windows
May be interested
- Warning: new code of virtual money digging is available via Facebook Messengersecurity researchers from trend micro have discovered a new virtual money code that is attacking users via facebook messenger called facexworm.
- Hackers found a way to bypass Microsoft Office 365 Safe Linkssecurity researchers have just revealed how hackers overcome microsoft office 365's safe links security feature, used to protect users from malware and phishing attacks.
- WannaCry is a year old, EternalBlue is bigger than you thinktoday 12/5, commemorating the 1st anniversary of wannacry extortion's virulence broke out into a global 'pandemic'.
- Discover 2 new vulnerabilities on 2 popular email protocolsthis vulnerability affects two of the very popular email protocols, pgp and s / mime, although the degree of impact depends on the use of the client software's protocol. quite a lot of email client software is affected, including apple mail, mail application on ios and thunderbird.
- The DHCP vulnerability in Red Hat Linux helps hackers execute remote codesecurity researchers at google have discovered a serious remote command-line vulnerability on red hat linux's dhcp software and derivative versions of the fedora operating system.
- Malware digs virtual money over antivirus programs, forcing Windows to crashdigging money for encryption is a new trend in the malware world, and recently, security company 360 total security has discovered a new malware that is extremely aggressive.