Porn sites exploit IE bug to install spyware

Hackers are taking advantage of a newly discovered vulnerability in Internet Explorer to install spyware on PCs that visit a number of Russian porn sites. The malware, first reported Monday by researchers at Sunbelt Software Inc., takes advantage of an unpatched flaw in the way IE processes Vector Markup Language (VML) code. VML is a language used to display graphic information on the Web.

The attack appears to work on all versions of Windows running the IE 6 browser, said Eric Sites, Sunbelt's vice president of research and development. "It's not an operating system-dependent issue," he said. Porn sites exploit IE bug to install spyware | InfoWorld | News | 2006-09-19 | By Robert McMillan, IDG News Service

Linked by shanmuga Tuesday, 19th September 2006 11:57AM