Internet Explorer zero-day attack being seen in the wild
It was announced late last week that there is a flaw in Internet Explorer that is being actively exploited in the wild, and there is no fix yet. This patch is currently slated to be released in February.
I would ask that you DO NOT use Internet Explorer for any web browsing even for known sites until there is a fix. Please use Edge, or an alternate browser.
This is a flaw where all you have to do is visit a specially crafted website. No clicks needed.
If you still have Windows 7 there may not be a fix since it is past end of life. The vulnerabilities that affect Win7 are just going to start piling up!
For reference, MS article: https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV200001
A CVE has been assigned, but has info yet: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0674
There are numerous articles about this online, but I have chosen not to include them here.
Director of Security Services
Mainstream Technologies Inc.