MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
internet
Search

Nasty Spoofing Attack Resurrects Internet Explorer Vulnerability in Windows 10 and 11

Saturday July 13, 2024. 09:34 PM , from Slashdot
Slashdot reader joshuark shared this report from BetaNews:

Check Point Research has identified a critical zero-day spoofing attack exploiting Microsoft Internet Explorer on modern Windows 10/11 systems, despite the browser's retirement.

Identified as CVE-2024-38112, this vulnerability allows attackers to execute remote code by tricking users into opening malicious Internet Shortcut (.url) files. This attack method has been active for over a year and could potentially impact millions... Attackers use a sophisticated trick to mask the malicious.hta extension, making use of the outdated security of Internet Explorer to compromise systems running updated Windows operating systems.


From Check Point Research:

Even though IE has been proclaimed 'retired and out-of-support,' technically speaking, IE is still part of the Windows OS and is 'not inherently unsafe, as IE is still serviced for security vulnerabilities, and there should be no known exploitable security vulnerabilities,' according to our communications with Microsoft.

Read more of this story at Slashdot.
https://tech.slashdot.org/story/24/07/13/0447214/nasty-spoofing-attack-resurrects-internet-explorer-...

Related News

News copyright owned by their original publishers | Copyright © 2004 - 2024 Zicos / 440Network
Current Date
Dec, Sun 22 - 07:01 CET