Malware
Mac
Facebook
Android
Vulnerability
Data loss
Privacy
More...

Search for:

Operation Aurora, and a brief video apology from me

iPhish - fake iPhone warranty steals info

Microsoft name the day for "Aurora" patch

Over 170,000 people are part of the Sophos community on Facebook. Why not join us on Facebook to find out about the latest security threats.

Hi fellow Twitter user! Follow our team of security experts on Twitter for the latest news about internet security threats.

Don't forget you can subscribe to the SophosLabs YouTube channel to find all our latest videos.

Hi there! If you're new here, you might want to subscribe to our RSS feed for updates.

Already using Google+? Find us on Google+ for the latest security news.

On LinkedIn? Join the Naked Security discussion group and connect with your peers in the security industry.

Sorry, something happened and we couldn't sign you up. Please come back later and try again.

Congratulations, you've successfully signed up for our daily news! Check your inbox soon, we've sent you an email.

Sorry, we won't accept that email address. Please try a different address.

We're adding your address to our list...

Join thousands of others, and sign up for Naked Security's newsletter

by Richard Wang on January 20, 2010 | Leave a comment

Filed Under: SophosLabs, Vulnerability

As Chet mentioned yesterday Microsoft are going to release an out-of-band patch for the IE zero-day vulnerability used in the "Aurora" hacks. Today Microsoft have confirmed that the patch will be released on January 21.

Microsoft's announcement :
http://www.microsoft.com/technet/security/bulletin/ms10-jan.mspx

Although the initial exploits seen in the wild for this vulnerability target IE 6 and Windows XP, security researchers (and cybercriminals too) have been hard at work extending the reach of the exploits to newer versions of both IE and Windows.

As with any security patch, our advice is to apply it as soon as you can.

Share

Email
Tweet
Buffer
Hacker News
App.Net
Pocket

Tags: General, web

Operation Aurora, and a brief video apology from me

iPhish - fake iPhone warranty steals info

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Name *

Email *

Website

Username *

Comment

You may use these HTML tags and attributes: <a href="" title="" rel=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <pre> <q cite=""> <strike> <strong>

About the author

Richard manages SophosLabs' operations in the United States. His principal security interests are endpoint security and user education. When he's not worrying about digital perils he enjoys singing, much to the distress of his cat, whose name does not feature in any of his passwords.

View all posts by Richard Wang

Popular
Recent
Related

sc-250

Snapchat images that have "disappeared forever" stay right on your phone...

Monday review

Monday review - the hot 16 stories of the week

Facebooks gets #hashtags, which does #WTF to your #privacy?

#Facebook gets #hashtags, which does #WTF to your #privacy?

facebook-hacked

Facebook hacking and godawful gold lamé sneakers

Get ready! Oracle to fix 40 holes in Java on Tuesday, 18 June 2013

US law enforcers want to see a kill switch in our mobile phones

US law enforcers want to see a kill switch on our mobile phones

Want to see who has viewed your Facebook profile? Take care..

Apple iMessage "censors" mention of Obama: international conspiracy...or software bug?

oustsmart-250

Australia's National Consumer Fraud Week starts today - the motto is, "Outsmart the scammers!"

FDA tells medical device makers and hospitals to strengthen security

FDA tells medical device makers and hospitals to strengthen security

SSCC 111 - PRISM and data leakage, encryption, Google contracts and Flash on phones [PODCAST]

US law enforcers want to see a kill switch in our mobile phones

US law enforcers want to see a kill switch on our mobile phones

FDA tells medical device makers and hospitals to strengthen security

FDA tells medical device makers and hospitals to strengthen security

Monday review

Monday review - the hot 16 stories of the week

oustsmart-250

Australia's National Consumer Fraud Week starts today - the motto is, "Outsmart the scammers!"

Get ready! Oracle to fix 40 holes in Java on Tuesday, 18 June 2013

PRISM, UK Surveillance, Sweden vs. Google, Blackberry Z10 - 60 Sec Security [VIDEO]

UK political bigwigs demand return of snoopers' charter. Seriously? Today?

UK political bigwigs demand return of snoopers' charter. Seriously? Today?

"Nej till Google!" - Sweden tells a local council that Google's cloud is a no-go area

Naked Security's Graham Cluley and Carole Theriault say goodbye

Naked Security's Graham Cluley and Carole Theriault say goodbye

Patch Tavis Day

Patch Tavis Day

IT administrators await mammoth Microsoft security patch bundle

IT administrators await mammoth Microsoft security patch bundle

Broken glass

Patch Tuesday insecurity news and SSCC 18

Sophos Security Chet Chat 41

SSCC 56 - Albert Gonzalez, Patch Tuesday, Texas data loss and Adobe zero day

Sophos Security Chet Chat 25 & 26

Sophos Security Chet Chat 25 & 26

Sophos Security Chet Chat

SSCC 75 - VB 2011, Apple updates, Microsoft Patch Tuesday and German R2D2 Trojan

Sophos Security Chet Chat 41

Sophos Security Chet Chats 42 and 43

Emergency security patch issued by Microsoft to squash Internet Explorer zero day exploit

Emergency security patch issued by Microsoft to squash Internet Explorer zero day exploit

Image (1) ms-exploitability-oct09.jpg for post 15104

Microsoft user? Adobe user? Update your systems now

Image (2) firefox-deutsch.jpg for post 15715

Firefox and Opera benefit from Operation Aurora fall-out

Video posts

More videos this way

PRISM, UK Surveillance, Sweden vs. Google, Blackberry Z10 - 60 Sec Security [VIDEO]

2013-06-08-citadel-250

Botnet smackdown, Oracle on Java, Passwords you can eat - 60 Sec Security [VIDEO]

2013-06-01-csaw-250

Android malware, Liberty Reserve, CSAW, Legal ransomware - 60 Sec Security [VIDEO]

2013-05-25-glass-250

Patching your business, Yahoo breach, Google Glass, DDoS-for-hire - 60 Sec Security [VIDEO]

wifimyths-250

Three wireless security myths - busted! [VIDEO]

About Naked Security
About Sophos
Our Authors
Awards
Got a story for us?

Tags

Adobe Android anonymous Apple Cybercrime data loss DDoS Exploit Facebook Fake anti-virus General Google hacking iPhone IT Malware Microsoft password phishing Privacy Scam scareware Spam Survey Scam Twitter Video vulnerability web web 2.0 WWW

Categories

Adobe (341)
Android (414)
Apple Safari (130)
BlackBerry (85)
Clickjacking (70)
Cryptography (178)
Data loss (1016)
Firefox (169)
Google (260)
Hacked (136)
Internet Explorer (281)
iOS (320)
Malware (2461)
Microsoft (267)
Nude Celebrities (70)
Organisations (9)
PDF (82)
Phishing (357)
Podcast (177)
Privacy (2431)
Security threats (905)
SophosLabs (1891)
Twitter (326)
Windows (226)

Archives by month

June 2013 (43)
May 2013 (92)
April 2013 (94)
March 2013 (103)
February 2013 (96)
January 2013 (109)
December 2012 (52)
November 2012 (103)
October 2012 (113)
September 2012 (91)
August 2012 (110)
July 2012 (92)
June 2012 (91)
May 2012 (99)

Download some free tools

Free anti-virus for your MacFree antivirus that works simply and beautifully
Free Android protectionFree antivirus for all your Android devices
More free tools...

Take a look at our products

Endpoint
Encryption

Mobile
Network

Email
Web

Try out our free trials and demos

Investigate the threats

Virus and spyware analyses
Threat Center
Inside SophosLabs

© 1997-2013 Sophos Ltd. All rights reserved
Legal
Privacy
Cookies
Disclaimers

Send to Email Address Your Name Your Email Address

Cancel

Post was not sent - check your email addresses!

Email check failed, please try again

Sorry, your blog cannot share posts by email.