PÕQ~NovaLad [Sr. Admin]
New IE Malware erases all OFFICE files
2008-12-14 1:52 PM PST
IE Vulnerability (from ANUBIS' blog)
2008-12-14 1:28 PM PST
http://www.microsoft.com/technet/security/advisory/961051.mspx
That is the official link to the Microsoft advisory. This nasty piece of malware is placed on an unsuspecting web site using a SQL injection attack. Simply visiting the infected site with Internet Explorer can compromise your computer. All MS Office files (.doc, .xls) and jpeg files will be corrupted.
Follow the Microsoft's advise to mitigate the risk or use one of the Web browsers that is not vulnerable. Firefox, Opera or Google Chrome are some alternatives.
This is still known as a zero-day vulnerability. No name has been assigned to it as yet.
More links:
http://blogs.technet.com/swi/archive/2008/12/12/Clarification-on-the-various-workarounds-from-the-recent-IE-advisory.aspx
http://isc.sans.org/diary.html?storyid=5464
http://www.bleepingcomputer.com/forums/topic184882.html
More info to come soon...
2008-12-14 1:28 PM PST
http://www.microsoft.com/technet/security/advisory/961051.mspx
That is the official link to the Microsoft advisory. This nasty piece of malware is placed on an unsuspecting web site using a SQL injection attack. Simply visiting the infected site with Internet Explorer can compromise your computer. All MS Office files (.doc, .xls) and jpeg files will be corrupted.
Follow the Microsoft's advise to mitigate the risk or use one of the Web browsers that is not vulnerable. Firefox, Opera or Google Chrome are some alternatives.
This is still known as a zero-day vulnerability. No name has been assigned to it as yet.
More links:
http://blogs.technet.com/swi/archive/2008/12/12/Clarification-on-the-various-workarounds-from-the-recent-IE-advisory.aspx
http://isc.sans.org/diary.html?storyid=5464
http://www.bleepingcomputer.com/forums/topic184882.html
More info to come soon...
