Items tagged with Internet Explorer
For the most part, Microsoft will not be pushing out a critical patch to Windows 7 users to address a security flaw in Internet Explorer. Microsoft confirmed its plans in a statement, saying the only Windows 7 users who will received the security update are those who are paying for extended support, as businesses are welcome to do. Let's not feign surprise at the decision. Windows 7 enjoyed a nice, long run before it was finally retired last week, a decade and a half after it first released to the public. Microsoft provided plenty of warning leading up to last day of support, including nag screens urging hold outs to upgrade their PCs to Windows 10. The bug in question is a zero-day remote code...
Read more...
Microsoft has issued a security bulletin warning Internet Explorer users of a zero day vulnerability that is actively being exploited in the wild, and unfortunately there is no patch available at this time. Microsoft is working on a fix, though the company hinted it may not arrive until the next Patch Tuesday roll out, which is still three weeks away (February 11, 2020). It's been a bit of a tough week for Microsoft, in terms of major vulnerabilities rearing their ugly heads. As part of last week's Patch Tuesday roll out, Microsoft issued a fix for a major Windows cryptographic security flaw discovered by the US National Security Agency (NSA). Incidentally, it was the first time the NSA reported...
Read more...
Microsoft recently announced a number of interesting features for its upcoming Chromium-based version of Microsoft Edge. The features are primarily aimed at helping businesses and enhancing privacy. Microsoft’s new version of Edge includes a new “IE Mode”, Collections, and web tracker blocking. Microsoft has specifically designed several things for businesses. Businesses are notorious for their slow adoption of new technology. Microsoft wanted to make the transition to Edge as seamless as possible. Their new “IE Mode” will allow businesses to load old sites directly into the new web browser. The mode will utilize Internet Explorer’s rendering engine and load...
Read more...
Although Microsoft is hoping for a big browser comeback with the Chromium-based version of the Microsoft Edge browser, there’s another browser in the company’s repertoire that many people have already forgotten about. Of course, we’re talking about the “undead” Internet Explorer. Internet Explorer has a long history of poor security (which was one of the reasons for its dwindling popularity), and now a new exploit that takes advantage of the browser has been brought to light. John Page, a security researcher, has discovered an XML eXternal Entity (XXE) vulnerability that takes advantage of MHT files. The main issue is that by default, Windows-based...
Read more...
For many years and through many iterations, Microsoft championed Internet Explorer as the best browser around, and at one time IE dominated the landscape. What about now? Microsoft's message is very different in the era of Windows 10 and Edge (which is undergoing an overhaul to Chromium). In a recent blog post, Microsoft warned of the "perils of using Internet Explorer as your default browser." Internet Explorer is a legacy product at this point. It hangs around because in the old days, so much of the web and the tools businesses built were designed to be compatible with IE. Consider that a decade ago, IE claimed around two-thirds of the browser market, and by some metrics it was still the dominant...
Read more...
Last week, Microsoft released an emergency patch to fix a zero-day security issue in Internet Explorer. If left unpatched, an attacker could exploit the security hole to remotely execute malicious code on a victim's PC when visiting a compromised website. Releasing a patch was all well and good, except that there's an known issue that is quite annoying for some Lenovo laptop owners. "After installing KB4467691, Windows may fail to start up on certain Lenovo laptops that have less than 8GB of RAM," Microsoft lists as one of several known issues. Microsoft is working with Lenovo to resolve the issue through a future update. In the meantime, the company has a couple of suggested workarounds for...
Read more...
Microsoft has released an emergency patch to fix a critical vulnerability discovered in Internet Explorer. If left unpatched, an attacker could exploit the security hole to remotely execute malicious code on a victim's PC when visiting a compromised website. Listed as CVE-2018-8653, the flaw affects all supported versions of Windows. "A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current...
Read more...
If you are [for some bizarre reason] still running Microsoft's Internet Explorer web browser, you might want to take notice of a new zero-day vulnerability that is making the rounds around the globe. The exploit is called "Double Kill" and was discovered by Chinese security firm Qihoo 360. Qihoo 360 thankfully isn't divulging any technical details about Double Kill, but it does acknowledge that it has contacted Microsoft to give the company a heads up. What we do know, however, is that Double Kill involves an Internet Explorer vulnerability that uses Microsoft Word documents (usually sent an email attachment) as the attack vector. Opening the Word document is all that is required for...
Read more...
Well this is unsettling news—a security researcher has discovered a bug in Microsoft's Internet Explorer browser that allows remote hackers to view anything and everything you type in the address bar, including web addresses, search terms, and any other text. If you are still using IE as your browser of choice, be advised that the vulnerability exists on the latest version. This is a potentially big deal as nearly a third of all desktop users still surf the web with IE, according to data by Net Applications. Stat Counter reports a much lower usage at 8.61 percent, but either way, IE is still in use today.Image Source: Manuel Caballero The flaw was discovered by Manuel Cabellero, who outlined...
Read more...
Despite all the effort Microsoft is expending in getting Internet users to try out and stick with its Edge browser, Chrome continues to the popular choice. Even worse for Microsoft, Chrome's popularity is growing—it now accounts for more than half of all desktop browser usage and has nearly double the market share of Edge and Internet Explorer combined. Market research firm Net Applications has Chrome sitting pretty with a 54.99 percent share of the desktop browser market, up from 31.12 percent at this moment a year ago, while Internet Explorer and Edge combine for 28.39 percent and Firefox stuck at around 11 percent. Even more interesting is that when Windows 10 launched to the public at the...
Read more...
We suspect there are some high-fives flying around in Mozilla's offices this morning, as the company's Firefox browser has now caught up with and even slightly bumped ahead of both Internet Explorer and Edge combined in desktop browser market share, according to data provided by StatsCounter. It's the narrowest of victories with Firefox claiming a 15.6 percent share of the desktop browser market at the end of April, compared to 15.5 percent for Microsoft's two browsers combined. In horse racing, that would be a photo finish. Even if you want to call it a tie, which you'd be justified in doing, Microsoft can't be thrilled that more users aren't adopting its Edge browser. "Microsoft might have...
Read more...
Psst, Internet Explorer users -- brace yourselves, EOL (End of Life) is coming. It's a new year and apparently Microsoft resolved to reduce the number of browsers it supports to just two, those being Edge in Windows 10 and Internet Explorer 11 in previous versions of Windows. All other IE builds are soon to be obsolete from a security standpoint. The date of execution is January 12 (next Tuesday). At that time, Microsoft will cease supporting Internet Explorer versions 8, 9, and 10. What that boils down to is no more technical support and, more importantly, no more security updates. Anyone who continues using the legacy browsers will find themselves at greater risk of attack.Slowly but surely,...
Read more...
All eyes are on Microsoft as it gets ready to release Windows 10, the next generation operating system that's such a significant upgrade, the Redmond outfit decided to skip right over Windows 9. Microsoft has a lot riding on Windows 10, though it's not just about the OS as a whole. There are subplots at play, like whether or not Microsoft's new Edge browser will rule the web the way Internet Explorer once did.For the first time in forever, Internet Explorer's desktop browser share is below 55 percent, having fallen from 55.15 percent at the May to 54 percent at the end of June, according to Net Applications. If we look back a year ago, IE was holding onto a 58.35 percent share. A 4.35 percent...
Read more...
Microsoft is giving Internet Explorer and Project Spartan browser users a heads up that in future releases, the Do Not Track feature will no longer be enabled by default. On the surface (no pun intended), Microsoft's reasoning for the change is that enabling the privacy feature by default only encourages websites to ignore the setting and use tracking cookies anyway.It's not such an odd leap of logic, and it's one that the World Wide Web Consortium (WC3) agrees with. As WC3 explains, sending a signal to disable tracking "MUST reflect the user's preference, not the choice of some vendor, institution, site, or network-imposed mechanism outside the user's control." So when no user choice exists...
Read more...
It seemed inevitable, but last week, we received confirmation that Microsoft would in fact be killing off Internet Explorer at some point. The death won't happen with Windows 10, however, as the browser is still relied-upon in the enterprise market. Given that, we might not even see it be retired in Windows 11 -- the enterprise world can move at a snail's pace when it comes to software upgrades. Regardless of all that, what's been certain for a while is that Project Spartan would become the primary browser in Windows 10, sporting a brand-new Trident engine fork called EdgeHTML. While it was once believed that both browsers in Windows 10 would bundle in both the EdgeHTML and IE-based Trident...
Read more...
It's always fun to see which security flaws get exploited at Pwn2Own, and this year's event has proven to be no exception. In fact, it could be considered to be one of the most exciting events to date, with JungHoon Lee exploiting three major browsers, and securing a record $110,000 payout for one of the flaws. Starting the day off, JungHoon (aka: lokihardt) breached a time-of-check to time-of-use vulnerability in the 64-bit version of Internet Explorer, breaking out of the sandbox via a privileged JavaScript injection, allowing him to execute medium-integrity code. This flaw netted JungHoon $65,000. His second proof-of-concept was the big one, worth $110,000. It affects both the stable and beta...
Read more...
You can't look back and examine the history of Windows without also taking into account Internet Explorer, the browser that first debuted as a part of the "Plus! for Windows 95" add-on package nearly 20 years ago. By some counts, it's still the most used browser today, though beginning with Windows 10, Microsoft will introduce Windows users to a brand new browser.We've already seen IE's successor in action under its codename Project Spartan. It's not yet finished, nor will Project Spartan be the final name when Windows 10 ships to consumers later this year -- Microsoft is still trying to figure out what to call it.Internet Explorer prepares to walk the plank."We're now researching what the new...
Read more...
There's been a lot of talk about Project Spartan, the new browser that will replace Internet Explorer in Windows 10. That's also true for the version of Windows 10 that runs on smartphones, and for the first time, Microsoft is providing a glimpse of how Project Spartan's rendering engine (also called Project Spartan) runs on mobile handsets. It's available in the Windows 10 Technical Preview for phones. As currently implemented, the Project Spartan rendering engine is baked into Internet Explorer -- Microsoft is saving a full-fledged browser replacement for a later preview. Essentially what that means is you can test drive the new rendering engine, just in a different...
Read more...
When we reported on the release of Microsoft's latest preview build last week, we mentioned that while Cortana made an entrance, the much-anticipated Spartan browser did not. But little did we realize that some of Spartan made the cut, in the form of an experimental rendering engine hidden under IE's hood. As we learned in late December, Microsoft has separated its Trident engine into two separate versions: one is for Spartan, now called EdgeHTML, while the other remains with Internet Explorer. The reason Microsoft doesn't simply forego the lesser version is due to compatibility, which is hugely important in the enterprise sector. If you're running the Windows 10 9926 build, chances...
Read more...
After having its name besmirched following the release of Windows Vista, Microsoft hit it out of the park with its follow-up: Windows 7. Microsoft then developed Windows 8 to appease two distinct markets — PCs and tablets — with one operating system, resulting in significant backlash from critics and consumers. Microsoft hopes to distance itself from Windows 8.x not just in name (notice how they skipped Windows 9), but by also ensuring that PC users are not left in the cold to accommodate tablet users (and vice versa). Windows 10 will bring with it a wealth of new functionality to users, including the lightweight ‘Spartan’ Internet browser that we first told you about in late December. Spartan...
Read more...
The next version of Internet Explorer might look more like the competition rather than a retooled version of itself. Scheduled to debut in Windows 9 (codenamed Threshold), Internet Explorer 12 (IE12) is said to look like a "cross between Chrome and Firefox" as part of a massive overhaul to the user interface that will give it a flatter appearance. According to Neowin, the tabs for each page are rectangles at the top and start at the left of the Windows, similar to both Chrome and Firefox. They also appear above the URL bar, unlike in Internet Explorer 11, in which tabs populate the area to the right of the URL bar. "It really looks a lot like Chrome but with Microsoft's flat lipstick applied,"...
Read more...
Last month, we covered a new research project from Microsoft, dubbed Project DeLorean, that seeks to dramatically improve the subjective experience of cloud gaming by cutting perceived latency between the player and the server. Today, in a potentially related announcement, comes news that Microsoft is also working on a system that would allow games to stream at 60 fps directly in-browser. The two projects, which are almost certainly related, would supposedly allow for in-browser play of both Xbox 360 and Xbox One games at up to 60 FPS with the "full" Xbox 360 experience -- meaning that the Xbox 360 dashboard would also run in-browser. According to the Neowin report, the project has Xbox branding...
Read more...
