from the do-not-get-infected dept.
According to several security information sources there is an exploit around for the Vulnerability in Windows Shell Could Allow Remote Code Execution which is already in heavy use on several web sites. It will install spyware, rootkits and keyloggers. The problem exists in the Active-X component of Microsoft Internet Explorer. So either disable Active-X or switch to an other browser like Firefox.
Microsoft has some workarounds in the "Suggested Actions" section in the advisory. Microsoft is also working on a security update scheduled for release on October 10. This is actually the next "Patch-Tuesday".
< | >