Some Internet Explorer versions have started to block ActiveX controls that are no longer in date – with the main purpose being to prevent exploitation of flaws and to protect data.
A number of ActiveX controls don’t update automatically, which enables cyber criminals to take advantage of security flaws, compromising user and company data.
The feature is compatible with IE 8 through to 11 on the Windows 7 OS SP1 and above, in addition to Windows Server 2008 RS SP1 and over, according to one post on Microsoft.com.
An IE notification bar will inform users when a dated ActiveX control is being blocked by the browser and will allow the user to install an update. Users will also be able to interact with elements of the website that haven’t been affected by ActiveX.
BeyondTrust CTO Marc Maiffret told SCMagazine.com:
“[Microsoft] also importantly [has] released new GPO settings for Internet Explorer to allow business to control this functionality corporate wide. This represents another great configuration option for helping reduce a company’s overall attack surface.”
ActiveX controls are tiny applications that allow websites to offer content and enable user interaction with toolbars.
Businesses should be the entities most concerned with the flaw, as IE is used in workplaces up and down the country. To help prevent a possible attack, company owners could do far worse than re-prioritise their IT security recruitment campaigns. It would help to safeguard against any potential flaws not just with IE, but also other online applications and software where security holes may exist.
Send us your CV and have our recruiters match you to the ideal opportunities
Do you already have an account with us?
Log inWant to have an account with us?
RegisterWant to just send us your CV?
By submitting your registration and CV to us you are agreeing to join our database and to be contacted about relevant jobs industry communications. Please read our terms of business for more information.