Authored by a Symantec employee
Microsoft has issued a critical security update for their web browser, Internet Explorer. This bug has already been seen in attacks involving the Evangelical Lutheran Church of Hong Kong’s website. Attackers compromised the website by modifying its code to redirect users to another website that hosts the exploit. Once victims were redirected to the fake website, a malicious file known as Korplug, which is a backdoor Trojan, was downloaded to the victims’ computers.
The security hole in Internet Explorer could allow an attacker to take over a computer. Once the attacker has gained control, they can potentially install programs, view, change, or delete data and more. All it takes is for a user to visit a specially crafted webpage that contains malicious code while using Internet Explorer. The malware used in this attack has been seen in a range of attacks, mainly in Asia over the past three years.
This vulnerability affects versions of Internet Explorer 7, 8, 9, 10, and 11 that are running on Windows Vista, Windows 7, Windows 8, and Windows RT (tablet).
To stay safe from this vulnerability:
- Norton customers are protected. Be sure that you have the latest version of your software installed.
- Use Windows Update or the Microsoft Download Center to protect against this.
- Be cautious when receiving emails, instant messages or any other kind of communication from unknown senders.
- Avoid clicking on links and don’t open unexpected attachments sent through email.
Symantec Corporation, the world’s leading cyber security company, allows organizations, governments, and people to secure their most important data wherever it lives. More than 50 million people and families rely on Symantec’s Norton and LifeLock comprehensive digital safety platform to help protect their personal information, devices, home networks, and identities.
© 2017 Symantec Corporation. All rights reserved. Symantec, the Symantec Logo, the Checkmark Logo, Norton, Norton by Symantec, LifeLock, and the Lockman Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the United States and other countries. Firefox is a trademark of Mozilla Foundation. Google Chrome is a trademark of Google, Inc. Mac, iPhone and iPad are trademarks of Apple Inc. Microsoft and the Windows logo are trademarks of Microsoft Corporation in the United States and/or other countries. The Android robot is reproduced or modified from work created and shared by Google and used according to terms described in the Creative Commons 3.0 Attribution License. Other names may be trademarks of their respective owners.