Microsoft’s Internet Explorer browser poses security concerns, says bug hunter

Internet Explorer bug (Image Credit: YouTube screencap / Manuel Caballero)

Microsoft Windows users are warned about using the old Internet Explorer.

by Jeff Villanueva

September 28, 2017 at 1:49 PM

Don’t miss on the latest updates

Click on the topic that interests you to follow it. We will keep you updated with the news you shouldn’t miss.

Tech

If you are still using Microsoft’s Internet Explorer, chances are your computer is vulnerable to malicious attacks. This was the information found out by security researcher Manuel Caballero after examining the codes of Microsoft’s old browser.

While Microsoft has already released Microsoft Edge to replace Internet Explorer, there are users still working with the old browser.

But what this independent security researcher found will make everyone who uses the old Microsoft browser think twice before using it again.

Mining digital currencies

According to Caballero, hackers can easily make Microsoft's Internet Explorer become bots because of the so-called zombie script bug, which, as he claimed, has been public and unpatched for months now. With this bug left unchecked, hackers can drop malware and/or viruses which could enable them to penetrate the computer system itself via its ineffective browser. This leaves one’s personal files open to digital data mining.

The first signs that malware attacks are bring dropped are popup ads.

Unfortunately, Internet Explorer’s popup blocker is completely broken, according to Caballero.

Mind reading, eh?

Another bug found on Internet Explorer allows any serious hacker to identify where the user is going, like mind reading, but it’s not. According to Caballero, a script executed inside an object-HTML tag makes the location object “confused.” Instead of running the instruction, this “confusion” created by the bug will simply return the value of the main location.

In laymen's terms, whatever you type in the address bar of Internet Explorer can be viewed by the attacker. In some ways, it could be compared to some aspects of the recently reported CCleaner malware.

Here’s a video proving the said process exists:

Microsoft not dropping IE

So why doesn't Microsoft officially drop Internet Explorer since it already has a new internet browser? Caballero suggested that Microsoft may have been trying to get rid of the old browser. However, as NetMarketShare.com revealed, Internet Explorer has a total desktop browser market share of 17.89% compared to Microsoft Edge’s 5.6%.

As posted by the tech website WCCFTech.com, here’s the response from Microsoft regarding the issue raised: “Windows has a customer commitment to investigate reported security issues, and proactively update impacted devices as soon as possible.”

Microsoft has also promised to release a security fix in its next update scheduled this Tuesday. However, it was not revealed whether the fix would include solving the bug on Internet Explorer.

Jeff Villanueva

Contributor

I am an avid fan of basketball, Marvel and DC comics, PC games, and so, my love to check upcoming powerful computers..

Read more on the same topic from Jeff Villanueva :

L.A. Lakers Update: Possible options for Russell Westbrook, including Sixth man 'Resident Evil 2, 3 and 7: Biohazard' coming to PlayStation 5 and Xbox Series X|S in 2022 Los Angeles Lakers found ways to free up two max contracts for next season

This article has been curated and verified by

Matthew Chacko

Reviewer of the news article

Suggest a correction to this article

Rate this news title

Blasting News is working with the European Union in the fight against fake news.

This area provides transparent information about Blasting News, our editorial processes and how we strive for creating trustworthy news. Moreover, it fulfills our commitment to The Trust Project - News with Integrity. Blasting News is not a member of the programme, but has requested to be part of it; The Trust Project has not conducted an audit yet.

Default Mobile Version