CVE number – CVE-2019-1367
Microsoft has issued an emergency patch which users should utilise as soon as possible to fix a bug on the Internet Explorer browser.
The vulnerability could allow the browser to be hijacked by attackers with Microsoft confirming that versions 9 to 11 were vulnerable. Users still using Internet Explorer should download and apply the patch as soon as possible.
In one scenario described by Microsoft an attacker could host a website designed to exploit the vulnerability through Internet Explorer and convince users to visit through an email. The attacker could then feasibly install malware, alter data or set up brand new accounts with full user rights.
Just over 8% of people still use Internet Explorer, but where possible users should consider using a different browser. Other popular browsers include Microsoft Edge, Google Chrome and Apple Safari, but of course there are others available.
Software and app updates, including browsers, often contain vital security updates which will protect devices from criminals. You will often receive prompts to update to the latest version and these should not be ignored. Turning on automatic updates for important patches such as this is a great way to ensure you are secure without much effort.