[Jomar]

[Operation Aurora - Severity: HIGH

The tightly coordinated attack code-named Operation Aurora, exposes a zero-day vulnerability in Microsoft IE (CVE-2010-0249) to install espionage Trojans on networks of large corporations and steal information.

The vulnerability affects systems running on Microsoft IE 6 on Windows 2000 and IE 6, 7, and 8 on supported editions of Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2.]


[These guidelines are always smart, but absolutely essential if you do not have a complete security solution:

1. Don't download from sites that you don't trust
2. Don't enter confidential information into sites you are not familiar with
3. Don't shop at sites you don't know
4. Update your operating system regularly
5. Always run the latest version of your browser software, checking regularly for updates
6. Never follow a link from an e-mail that asks you to enter private information. Only malicious sites designed to look like real sites will ask for this. Reputable sites will never ask you to do this!
7. Never open an e-mail or instant message attachment unless you know and trust the sender and can verify the attachment was intentionally sent.]

http://www.zonealarm.com/security/en...ort/aurora.htm