Have you patched Internet Explorer 7 yet?

We’re seeing evidence of a vulnerability in Internet Explorer 7 being exploited in the wild.

The vulnerability (known as MS09-002) allows malicious webpages to run code on your computer which could, of course, infect your PC, commandeer your computer to be part of a botnet, or steal your identity.

Hackers are increasingly using the web to infect unsuspecting computer users, so sadly it came as no surprise to come across a website that was carrying code that exploited the vulnerability:

Fraser Howard of SophosLabs has blogged in more detail about this, and has provided information about how Sophos proactively protects against the threat. But the most important thing is that you patch your systems with Microsoft’s fix.

Every month Microsoft issues a bundle of security…

Read more in my article on the Naked Security website.

Found this article interesting? Follow Graham Cluley on Twitter or Mastodon to read more of the exclusive content we post.

Graham Cluley •   @gcluley

Graham Cluley is a veteran of the anti-virus industry having worked for a number of security companies since the early 1990s when he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows. Now an independent security analyst, he regularly makes media appearances and is an international public speaker on the topic of computer security, hackers, and online privacy. Follow him on Twitter at @gcluley, on Mastodon at @[email protected], or drop him an email.