Security Advisor
Friendly Reminder: Patch Your Internet Explorer
Microsoft released an out-of-band patch for its Web browser earlier this week.
To keep you on your toes, Microsoft has released its first out-of-band security update of the year. The fix targets that pesky Internet Explorer zero-day issue I discussed in last week's Security Advisor.
Unlike the temporary fix that Microsoft released at the beginning of the month, this security update bulletin looks to actually solve the memory hole that led to active remote code execution attacks online. For those with Internet Explorer 9 or 10, take an extended lunch -- the vulnerability targeted is only found in Internet Explorer 6 (who is still using 6?), 7 and 8.
Just with Microsoft's monthly patch rollout, the update should only be applied after all testing is complete. But don't put it off for later, it's rated "critical," Microsoft's highest severity warning.
My suggestion? If you haven't upgraded to the latest version of Internet Explorer, you might as well do that. Internet Explorer 9 and 10 come packed with some enhanced security features not found on the outdated browser versions.