Businesses ready themselves for Microsoft security fix

April 10, 2006 Sophos Press Release

Microsoft has rated some of the patches as critical
Microsoft has rated some of the patches as critical.

Experts at SophosLabs™, Sophos's global network of virus and spam analysis centers, have reported that businesses are readying themselves to roll out an important series of security patches scheduled to be released by Microsoft on Tuesday 11 April.

Sophos reported last month how hackers were actively exploiting an unpatched security hole (known as the "CreateTextRange" vulnerability) in Internet Explorer to attack innocent computers. At the time Microsoft researchers said they were "working day and night" on a fix, and some computer users reported they were turning off Active Scripting or switching to alternative web browsers such as Firefox to ensure their systems were not vulnerable.

Following the security hole's discovery, Microsoft warned users to exercise caution when opening email messages, and web links in email messages, from untrusted sources.

"If you were planning a romantic date with someone from your IT department on Tuesday night, think again. Companies have been hanging on, waiting for the official fix from Microsoft for this serious security problem," said Graham Cluley, senior technology consultant for Sophos. "Businesses will be eager to roll out these security patches as soon as possible to ensure their networks are properly defended. Any vulnerable computer user should update their systems at the earliest opportunity following the release of the patches on Tuesday."

Sophos continues to recommend companies protect their desktops and servers with automatically updated anti-virus protection.