Microsoft Holes Exploited Again
As if the last security hole in Internet Explorer was not enough, here’s yet another reason to drop Microsoft Software. This time it’s their cash-cow, Office:
Attackers are exploiting the just-patched vulnerability in Internet Explorer (IE) by hiding malicious ActiveX controls in Microsoft Word documents, according to security researchers.
“Inside the document is an ActiveX control, and in that control is a line that makes it call out to the site that’s hosting the malware,” said David Marcus, the director of security research and communications for McAfee’s Avert Labs. “This is a pretty insidious way to attack people, because it’s invisible to the eye, the communication with the site.”
This all reminds me of a sieve – full of holes.
If I was a small business using Microsoft application software today, I would be dropping it faster than a red-hot rock. If I was a CTO I would be planning now how to migrate away.
OpenOffice.org will protect you from malicious ActiveX in documents, Firefox for web browsing and Thunderbird for email will do the same whilst allowing you to continue to use the Windows OS as you plan the final step to freedom. Ubuntu will complete the process.
If you need help, there are companies out there who can provide support and technical assistance. 😉
Tags: Firefox, Internet Explorer, Microsoft, Migrating, OpenOffice.org, The Open Learning Centre, Thunderbird, Windows
This entry was posted on Saturday, December 20th, 2008 at 13:02 by Alan Lord and is filed under FLOSS in the news, The Open Learning Centre. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.
[…] I won’t dwell on the merits, or not, of the research itself. There are many excellent reports in the public domain that quite clearly demonstrate the strengths of the Open Source Software production model. Between proprietary and OSS methods I know which I believe is inherently more secure, and more robust too. Just recall on the last couple of months of Microsoft security holes. […]
[…] the last few scant months, there have been several major and very serious security flaws and attack opportunities with […]