What is going on?
A new flaw in Internet Explorer was recently discovered in the possession of people with malicious intentions. This flaw gives attackers the ability to silently install programs after a victim simply views a web site or email. Microsoft were unaware of the flaws existence at the time of this discovery. They have not yet released a security update to correct the problem but we’re expecting one soon. Now that this information is out in the public eye we can be certain that many more attacks will soon surface using the exact same flaw in Internet Explorer.
What Can You Do?
Another more complex option is to install the Enhanced Mitigation Experience Toolkit (EMET). This toolkit can add additional security measures to individual processes on your system. To use EMET to protect Internet Explorer follow these instructions:
1. Download and install EMET
2. Open EMET by clicking Program Files => Enhanced Mitigation Experience Toolkit => EMET 3.0
3. Click the Configure Apps button
4. Find iexplore.exe and click the Open button. Typically located at C:\Program Files\Internet Explorer\iexplore.exe
5. Click OK and close EMET.
What is Information Security Doing?
We’re running intrusion detection systems that inspect our network use for this attack. If we see any attacks we immediately investigate further. We are also regularly testing of our network in search of many different security problems.
Please send any questions to the Information Security mailbox email@example.com.
Senior Information Security Architect