Sites Installing Spyware Via Zero-Day IE Bug


A still-unpatched Internet Explorer vulnerability that's been used by attackers since late November to compromise Windows PCs is now being used by large numbers of malicious Web sites to plant spyware and adware, a security company claimed Thursday. San Diego-based Websense said in an alert that it's detected thousands of sites connecting to a main malicious URL that's "actively exploiting this vulnerability to execute malicious code," according to the warning. Security Pipeline | Sites Installing Spyware Via Zero-Day IE Bug

Linked by shanmuga Friday, 9th December 2005 12:01AM