What to Tell Contacts About IE's Newly Discovered Security Flaw

Posted on Apr 29, 2014 · No Comments

You've probably heard the news: hackers are exploiting a newly discovered security flaw in Microsoft's popular web browser, Internet Explorer. This has made front page news on major media outlets so your clients may be asking about it.

Be proactive. Alert your contacts about this exploit and tell them what they need to do. To help you get the word out fast, we have drafted a sample message that you can send today. Just copy and paste the note below into an email newsletter tool, like Presstacular. Use the article's headline — or a shorter version of it — as your email's subject line.

Security Alert: Hackers Exploiting Newly Discovered Flaw in Internet Explorer

Over the weekend, Microsoft revealed that there is a newly discovered security flaw in Internet Explorer that hackers are exploiting. It is called a “zero day” exploit because there was zero time between the discovery of the flaw and the first known exploits by hackers.

The flaw affects nearly half of all browsers used for accessing the web. Although the affected browsers include Internet Explorer versions 6 through 11, the primary targets, according to FireEye, the security firm that discovered the exploit, are versions 9 through 11.

Microsoft is investigating the flaw and has not yet issued a security patch. As a result, the United States Computer Emergency Readiness Team (US-CERT), which is part of the U.S. Department for Homeland Security, has recommended that users either 1) follow workarounds listed by Microsoft in a security advisory or 2) stop using Internet Explorer altogether until a patch is made available. For those still using Windows XP, no patch will be made available because Microsoft ended support for XP on April 8, 2014. If you use Windows XP, US-CERT advises using another web browser.

Please contact us with any questions regarding this security issue.