Microsoft Holes Exploited Again
Attackers are exploiting the just-patched vulnerability in Internet Explorer (IE) by hiding malicious ActiveX controls in Microsoft Word documents, according to security researchers.
“Inside the document is an ActiveX control, and in that control is a line that makes it call out to the site that’s hosting the malware,” said David Marcus, the director of security research and communications for McAfee’s Avert Labs. “This is a pretty insidious way to attack people, because it’s invisible to the eye, the communication with the site.”
This all reminds me of a sieve – full of holes.
If I was a small business using Microsoft application software today, I would be dropping it faster than a red-hot rock. If I was a CTO I would be planning now how to migrate away.
OpenOffice.org will protect you from malicious ActiveX in documents, Firefox for web browsing and Thunderbird for email will do the same whilst allowing you to continue to use the Windows OS as you plan the final step to freedom. Ubuntu will complete the process.
If you need help, there are companies out there who can provide support and technical assistance.
This entry was posted on Saturday, December 20th, 2008 at 13:02 by Alan Lord and is filed under FLOSS in the news, The Open Learning Centre. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.