New zero-day vulnerability identified in all versions of IE2014-04-28 09:53 by Daniela
Tags: security, Internet Explorer
A flaw in Microsoft's Internet Explorer web browser could allow hackers access to the personal information of countless millions of web users. The vulnerability was discovered by cyber security software maker FireEye Inc. which said the flaw is a "zero-day" threat. This means the first attacks were made on the vulnerability before Microsoft was aware of it. FireEye also revealed a sophisticated hacker group has already been exploiting the flaw in a campaign dubbed "Operation Clandestine Fox", which targets US military and financial institutions.
Microsoft said it was aware of "limited target attacks" in a security advisory posted Saturday. The flaw affects Internet Explorer versions 6 through 11. However, hackers are mostly targeting versions 9 through 11, according to the security firm FireEye, which discovered the flaw.
Read more -here-