MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
internet
Search

Nasty Spoofing Attack Resurrects Internet Explorer Vulnerability in Windows 10 and 11

Saturday July 13, 2024. 09:34 PM , from Slashdot
Slashdot reader joshuark shared this report from BetaNews:

Check Point Research has identified a critical zero-day spoofing attack exploiting Microsoft Internet Explorer on modern Windows 10/11 systems, despite the browser's retirement.

Identified as CVE-2024-38112, this vulnerability allows attackers to execute remote code by tricking users into opening malicious Internet Shortcut (.url) files. This attack method has been active for over a year and could potentially impact millions... Attackers use a sophisticated trick to mask the malicious.hta extension, making use of the outdated security of Internet Explorer to compromise systems running updated Windows operating systems.


From Check Point Research:

Even though IE has been proclaimed 'retired and out-of-support,' technically speaking, IE is still part of the Windows OS and is 'not inherently unsafe, as IE is still serviced for security vulnerabilities, and there should be no known exploitable security vulnerabilities,' according to our communications with Microsoft.

Read more of this story at Slashdot.
Read more at Slashdot
https://tech.slashdot.org/story/24/07/13/0447214/nasty-spoofing-attack-resurrects-internet-explorer-...

Related News

internet July’s Windows 11 update is sending PCs into BitLocker recovery PC WorldJul 24
windows July Windows 10 update causes blue screen reboot loops – here’s the fix PC WorldJul 24
explorer How to use Windows Pro’s BitLocker device encryption on any PC PC WorldJul 24
attack No, Southwest Airlines is not still using Windows 3.1 OS NewsJul 23
systems How to change what Windows does when you plug in a flash drive PC WorldJul 23
security Put not your trust in Windows — or CrowdStrike ComputerWorldJul 23
vulnerability OpenMandriva ROME 24.07: A Linux-based alternative to Microsoft Windows 11 following Crowdstrike BSOD disaster BetaNewsJul 23
spoofing Windows 11 Strikes Again With Annoying Pop-up That Can't Be Disabled SlashdotJul 22
identified LA County Superior Court closes doors to reboot justice after ransomware attack TheRegisterJul 22
microsoft Everything you need to fully transform Windows 10 into Windows 7 BetaNewsJul 22
vulnerabilities Amusing BSoDs from around the world following CrowdStrike's disastrous Windows outage BetaNewsJul 22
malicious Microsoft pins Windows outage on EU-enforced ‘interoperability’ deal ComputerWorldJul 22
attackers Why Business Internet Security Is Important for You ComputerWorldJul 22
point EU gave CrowdStrike the keys to the Windows kernel, claims Microsoft TheRegisterJul 22
nasty Asus ROG Ally X Review: More Battery and Storage, Same Windows Problems Wired: Tech.Jul 22
internet CrowdStrike Windows patchpocalypse could take weeks to fix, IT admins fear TheRegisterJul 19
windows Make your Windows PC run cooler and more energy efficient with this free app [Update] BetaNewsJul 19
explorer Best Windows apps this week BetaNewsJul 19
attack Last call to get Microsoft Windows 11 Pro for just $22.97 PC WorldJul 19
systems CrowdStrike file update bricks Windows machines around the world TheRegisterJul 19
News copyright owned by their original publishers | Copyright © 2004 - 2024 Zicos / 440Network
Current Date
Aug, Fri 16 - 15:23 CEST