Mozilla Downloads Rise Following US-CERT Recommendation to Drop IE

Friday July 2nd, 2004

Wired News is reporting that Mozilla downloads have surged following advice from the US Computer Emergency Readiness Team (US-CERT) to avoid Internet Explorer for security reasons. Download numbers approximately doubled in the days following the US-CERT recommendation, which was made in the form of an update to an earlier vulnerability note and comments to the press. US-CERT is a partnership between the United States Department of Homeland Security — the government organisation set up in the wake of September 11th to prevent terrorist attacks — and the public and private sectors.

US-CERT's advice follows last week's outbreak of the Download.Ject virus, which exploited a number of holes in Microsoft's IIS Web server and Internet Explorer to install a password-stealing trojan horse on Web surfers' computers. Microsoft patched some of the flaws before the outbreak occurred and today released another update that protects against the vulnerability by way of a configuration change (though the underlying problem has not been fixed). Windows users should hotstep it to Windows Update (must be visited using IE) to install the patch, regardless of whether they use Internet Explorer as their default browser.

#53 Safari's not the best example...

by MillenniumX

Tuesday July 6th, 2004 5:36 AM

You are replying to this message

Unfortunately, Apple has taken a very similar path to the Microsoft's lunacy, and integrated Safari into the OS. The integration is not as deep as IE's, but you still cannot afford to ignore Safari's security patches. Just as many apps use MSHTML in Windows, many apps now use WebCore on OSX, so even if you don't use Safari you're still at risk from any bugs that might be found in WebCore.