Microsoft Internet Explorer 8 only launched in its final version on Thursday, but as we told you last week, it’s already been hacked wide open. Now Microsoft has held its hands up and admitted it: there’s a security flaw in the new browser. Read on for the full breakdown.
As we know, white hat (that’s ‘good’ or ‘not evil’ for the uninitiated) hacker Nils managed to hack Internet Explorer 8 last week at a security convention, much to the chagrin of Microsoft security experts present. Now it seems the Microsoft Security Response Centre (MSRC) team went straight back to work and tried to replicate the Internet Explorer 8 vulnerability. And yup, it’s real folks.
Says Terri Forslof, Security Manager at security firm TippingPoint, who was present at the event, “MSRC…let me know that they had reproduced and validated [the Internet Explorer 8] vulnerability discovered by the mysterious Nils.”
Forslof won’t say what the security flaw is, but it’s bad news for Internet Explorer 8, which Microsoft has been touting as super secure. We’ll shout up if and when Microsoft rolls out a patch for Internet Explorer 8. Given its promptness identifying the flaw, fingers crossed it won’t be long.