In an earlier ** CRITICAL WARNING ** (October 27, 2008) I suggested it was rare for Microsoft to issue out-of-cycle patches/updates; that is, at times other than the so-called Patch Tuesday monthly updates.
And now here we have another one already!
It’s safe to say that the CRITICAL UPDATE released today by Microsoft should be regarded as a MUST-APPLY by EVERYONE running Microsoft Windows.
If you really have to know the gory details refer to this Microsoft webpage.
But if you are content to remain safe, compliant and patched up to date without delving into the complexities, just take my word for it — YOU NEED TO APPLY THIS PATCH — and perform a Microsoft Update now. Not tomorrow… NOW!
What? You don’t use Internet Explorer as your browser?
Doesn’t matter! There are code modules of Internet Explorer that are also used by other applications (and even some other browsers), so apply this patch now regardless.
There is nothing hypothetical about the threat that this patch is designed to prevent. The exploit is “out there” and has already compromised a great many computers.
- Ignore This Warning At Your Peril -
Once again, if you don’t know or can’t remember how to apply patches and updates there is a complete description of everything you need to know in The Hacker’s Nightmare.
Section 4 Other Threats and Tactics
- Chapter 18: Patches & Updates 1: Overview
- Chapter 19: Patches & Updates 2: Microsoft Products
- Chapter 20: Patches & Updates 3: Other Products
And for your other malware applications…
Section 3 Defense in Depth
- Chapter 14: Vanquishing the Virus
- Chapter 15: Trojans & Spyware
- Chapter 16: Rootkits–a Hidey-hole for Scumware
NOTE: Don’t miss future important posts to this Blog — subscribe via the RSS/E-Mail links at the top of the right-hand column.
{ 10 comments… read them below or add one }
It just goes to show you that you should use a alternative browser. And if your not should really reconsider doing so!
Steve S.
As always I look forward for your posts.
I was ahead of the ball game this time. I had it done before receiving your information.
The only reason for that was because I followed your previous recommendations from the Hackers Nightmare about receiving Windows Secrets.
I sleep much better at night.
Thanks Dr. Mark
Thanks for the headsup Bill, I for one follow your recommendations and advice religiously.
Warren.
Thanks for the heads up Bill, I for one follow your recommendations and advice to the letter. Thanks again Wazza.
Thanks for the headsup Bill, I for one follow your recommendations and advice religiously.
Warren.
Thanks I recieved info yesterday that ie had a problem and needed a patch but microsoft was not patching it yet. I have started switching my people to firefox.
I started switching my people over to firefox. I was informed yesterday pcmech-windows secrets
I'll have more to say on the subject of Firefox/other browsers vs IE in an upcoming post.
But please note that you should ALWAYS keep Internet Explorer fully patched and up-to-date, whether you use it as your browser or not.
As I said in the above article, component parts of IE are used by other applications, so you cannot afford to ignore it.
Thanks for the warning, I automatically receive all update downloads so I had received it.
I am trying to sign up for automatic notification of new articles, subscription by email. I have filled in the required letters to show it isn't spam, filled in about 10 pages of them and each time there is a new one. I think some of the letters may be bold type but am unable ro make them bold, so I have given up. Any suggestions please?
Diana
@Diana Whitwam:
Diana, the subscription facility is provided by third-party service FeedBurner.com. I've just tested it again myself with a couple of my many e-mail addresses and it worked fine, and there have been no other complaints from visitors.
You don't have to worry about whether the captcha text is bold, Italic, upper or lower case, etc — just type it as all lowercase.