![[identity profile]](https://www.dreamwidth.org/img/silk/identity/openid.png){kind=small}
![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
Via C|Net:
Critical IE 7 exploit making the rounds
Microsoft issued a critical security warning Tuesday that a malicious exploit is making the rounds and attacking vulnerabilities in Internet Explorer 7. [...]
You almost have to wonder why they even bother making the announcement. Has there ever been a period longer than about a week when there was NOT some unpatched system-pwning Internet Explorer exploit in the wild?
Tags:
no subject
Christmas has always historically been the Big Infection Vector, with lots of people getting new computers. We've got a bit of a "perfect storm" effect, combining Christmas, large pre-existing botnets, and aggressively deployed injection attacks on major Internet sites. Further, it happens right after Patch Tuesday, which gives the maximum possible time for infection.
So it's not the exploit itself that could cause problems, it's the timing and the aggressiveness of the attack.