Microsoft Corp.’s latest round of software patches fails to fix a flaw in its Internet Explorer Web browser that makes it easier for online criminals to dupe people into disclosing their credit card numbers, passwords and other private data. Security experts were hoping that the patches, which were released today, would address the problem, but a Microsoft official said that the company is still devising a fix. The flaw lets criminals control the information displayed in the address bar of Explorer’s browser window. It was most recently used to trick people into visiting a forged version of the Citibank Web site. Once there, users were prompted to share personal identification and credit card account numbers. Citibank today warned people to steer clear of an e-mail that links to the fake site. Security experts said that the flaw is easy to exploit. Full Story
About OODA Analyst
OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.