Internet Explorer hacking could steal user data, even if you are using Chrome or Firefox


that of Microsoft much-maligned Internet Explorer web browser was discovered to be the cause of a new Windows exploit, which could allow hackers to access and obtain operating system user data.

Security researcher John Page discovered the security flaw, finding that any user with Internet Explorer installed on their system is vulnerable to the exploit, whether or not they are using the browser or have already opened it before.

Page reportedly contacted Microsoft last month, warning them of the exploit and requesting an urgent security patch, but according to ZDnet, the tech giant responded by saying that “a fix for this problem will be considered in a future release of this product or service.”

In response, Page made his findings public, including a YouTube video demonstrating the feat. (To note: mute the video unless you want to hear low bitrate thrash metal).

The hack relies on the ability of Internet Explorer to save its web pages in the .MHT file format, which modern browsers do not allow, thus making IE the default application for opening such files.

Bad actors can use this loophole to send users a malicious .MHT file via email or other communication services and, if opened, an .MHT file containing an exploit could allow hackers to access the. local files and program information for those users.

According to Page, the hack has been successfully tested in Internet Explorer 11 (the latest version) on Windows 7, Windows 10, and Windows Server 2012 R2 operating systems.

Looks like it’s a good time to take Microsoft’s own tips for avoiding Internet Explorer – and maybe even go a step further and completely remove the browser from your system.

[via ZDnet]

Source link


Comments are closed.