Categories: PCSecurityWorkspace

Fresh Internet Explorer Zero-Day Used In Targeted Attacks

An unpatched, previously-unknown Internet Explorer vulnerability has been exploited in targeted attacks, Microsoft has warned.

The groups behind the attacks have exploited browser zero-day flaws in the past, according to security firm FireEye. They used the Internet Explorer “use-after-free vulnerability”, which took advantage of problems when memory was freed to allow for external execution of code, alongside an Adobe Flash exploit to bypass Windows protections.

Clandestine Fox bites Internet Explorer

“They are extremely proficient at lateral movement and are difficult to track, as they typically do not reuse command and control infrastructure,” FireEye warned in a blog post on the attacks it named “Operation Clandestine Fox”.

All versions of Internet Explorer, from 6 to 11, are affected and administrators have been urged to take action. Microsoft said Enhanced Protected Mode, on by default in Internet Explorer 10 and Internet Explorer 11, as well as Enhanced Mitigation Experience Toolkit (EMET) 4.1 and EMET 5.0 Technical Preview should help mitigate the threat.

“We also encourage you to follow the “Protect Your Computer” guidance of enabling a firewall, applying all software updates and installing anti-virus and anti-spyware software,” Microsoft said in a blog post.

“Additionally, we encourage everyone to exercise caution when visiting websites and avoid clicking suspicious links, or opening email messages from unfamiliar senders.”

Experts are concerned about Windows XP users, given the recent end of support for the operating system. Once Microsoft does push out a patch, it won’t cover those XP users who haven’t acquired some kind of extended support.

“Don’t say you weren’t warned. Microsoft told the world it would stop releasing XP security updates a full seven years ago,” said security blogger Graham Cluley.

“Alternatively, you could consider using an alternative web browser like Chrome, Firefox, Opera, etc… That’s not to say that these Internet Explorer competitors don’t, from time to time, have security issues of their own, of course, but while you’re waiting for a proper fix from Microsoft it might be a course of action worth considering.”

It was only in February that Microsoft warned of another zero-day user-after-free vulnerability in Internet Explorer.

Are you a security expert? Try our quiz!

Thomas Brewster

Tom Brewster is TechWeek Europe's Security Correspondent. He has also been named BT Information Security Journalist of the Year in 2012 and 2013.

View Comments

  • if i were a cynical man i'd say this was convenient considering Microsoft just shut down XP and didn't get the migration it wanted and lo and behold a nasty bug appears that will get you if your on xp. But as i said only if i were a Cynical man

    • MS will do anything to target XP users especially those in Western world to get them off the most and best used
      and liked Windows set up. You can encourage and chum up with unsavioury characters from time to time inorder to sell your business, as long as nobody gets the wind of it
      and then go on to blame Hackers or Social engineers.Do not
      trust anyone except your own judgement.

  • Just to say this virus it all our families windows xp pro and windows 7 in February and in had to re-install the whole OS on all systems. we now use google because IE still is full if bugs. your report to MS system for problems is crap has you neveer get a reply and it dissapears into a black hole MS you are not sorting anything and IE needs to be replced......annoyed and disgusted and let down...

  • Just to say this virus it all our families windows xp pro and windows 7 in February and in had to re-install the whole OS on all systems. we now use google because IE still is full if bugs. your report to MS system for problems is crap has you neveer get a reply and it dissapears into a black hole MS you are not sorting anything and IE needs to be replced......annoyed and disgusted and let down...

Recent Posts

Amazon To Shutter Sites In Unionised Province In Canada

1,700 jobs to be lost in Quebec, as Amazon says it will close seven sites…

13 hours ago

Google Wins UK Injunction To Halt Russian Enforcement Of Judgements

Google wins permanent injunction from London's High Court to prevent enforcement of Russian YouTube judgements

15 hours ago

Tech Giants Announce $500 Billion AI Plan In US

OpenAI, SoftBank, Oracle and others form joint venture called 'The Stargate Project' – to build…

17 hours ago

CMA Chair Replaced By Government Amid Growth Drive

Government replaces chairman of the competition watchdog with former Amazon boss, amid Labour's “growth” drive…

18 hours ago

Google Invests $1 Billion in AI Startup Anthropic

More investment into OpenAI rival Anthropic, after Google reportedly makes fresh investment of more than…

21 hours ago

The State of Additive Manufacturing: Head-to-Head

Explore insights from Mathieu Pérennou, Additive Manufacturing Solutions Director at Hexagon, on how 3D printing…

21 hours ago