Patch Tuesday promises a critical fix for Internet Explorer 8 – and not a moment too soon

Windows patchNext Tuesday (14th May 2013), at approximately 1pm EST, Microsoft will be releasing its regular swathe of security updates.

And this month it will be particularly well received, as it is anticipated that amongst them will be a proper fix for the critical Internet Explorer 8 flaw that hackers have exploited to spread malware via US government websites such as the Department of Labor.

In a blog post giving advance notification of the “Patch Tuesday” updates, Group Manager of Microsoft Trustworthy Computing Dustin Childs said that the company would issue two Critical and eight Important-class bulletins, addressing a total of 33 unique vulnerabilities.

Most important, of course, are those critial security bulletins which this month address flaws in Microsoft Windows and Internet Explorer.

Sign up to our free newsletter.
Security news, advice, and tips.

Microsoft has already released a “Fix it” tool which can act as a temporary band-aid against the Internet Explorer 8 vulnerability, but in all likelihood the vast majority of consumers would be unaware that it existed – let alone considered installing it on their computers.

If Microsoft is successful in releasing a proper fix for the Internet Explorer 8 zero-day flaw then they deserve applause for turning around a working patch so quickly.

As I wrote last week, a proper security patch like the one promised for “Patch Tuesday” is a much better solution than a stop-gap tool to address known attack vectors.

So, if your IT team is busy after Tuesday next week, applying security updates to the computers on your network – cut them a little slack. They’re doing what they can to keep your Windows PC protected against cybercriminals.

And if you’re responsible for maintaining the security of your own PC, make sure that you install the patches as soon as possible. For many users, the most sensible course of action is to tell Windows to install such security patches automatically.

Graham Cluley is an award-winning keynote speaker who has given presentations around the world about cybersecurity, hackers, and online privacy. A veteran of the computer security industry since the early 1990s, he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows, makes regular media appearances, and is the co-host of the popular "Smashing Security" podcast. Follow him on Twitter, Mastodon, Threads, Bluesky, or drop him an email.

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.