Microsoft’s Internet Explorer Gets Hit by ‘Operation Clandestine Fox’ -- What You Need to Know

The U.S Department of Homeland Security has just advised all Americans to stop using Microsoft’s Internet Explorer due to a serious security flaw. Here are all the key facts you need to know.

Apr 29, 2014 at 9:41AM

The U.S. Department of Homeland Security has just advised Americans to not use Microsoft's (NASDAQ:MSFT) Internet Explorer browser until a serious security flaw can be resolved.

The flaw -- which allows malicious hackers to circumvent security measures in Windows operating systems when compromised websites are visited -- exploits a corrupted Adobe (NASDAQ:ADBE) Flash file to attack the victim's computer. FireEye Research Labs, which discovered the bug, has stated that the hackers exploiting the bug are calling the attack "Operation Clandestine Fox."

In response, Microsoft stated that it was working to repair the vulnerability in versions 6 through 11 of IE, although Windows XP users -- who lost support earlier this month -- will be left without a fix. Windows XP is still installed on 28% of the world's operating systems.

Image

IE users should take measures to protect themselves from Clandestine Fox. Source: Microsoft.

However, Symantec (NASDAQ: SYMC), the makers of Norton Antivirus, recently released a tool for XP users to protect themselves from the bug. Microsoft has advised downloading its Enhanced Mitigation Experience Toolkit version 4.1 to guard against attacks. FireEye has stated that disabling Adobe's Flash plugin can temporarily fix the issue across all platforms.

At the time of this writing, Microsoft has not released a fix for the bug yet -- a dire problem considering that nearly 57% of all PCs worldwide run one of the affected versions of IE.

What Operation Clandestine Fox means for Microsoft
Operation Clandestine Fox could mean a few things for Microsoft. First, it ironically benefits the company, since this could be the canary in the coal mine that tells late adopters that it's finally time to let go of XP.

However, that sales boost will come at the expense of Microsoft's reputation. Microsoft's operating systems -- both on PCs and Xbox consoles -- have long been riddled with security flaws.

ATMs running on Windows XP were repeatedly hit by USB drive and text-message based hacks. Last month, a 5-year-old boy discovered a security flaw in the Xbox One, simply by typing a series of spaces when prompted for a password. Problems like these often lead critics to claim that Linux distributions or Apple's (NASDAQ:AAPL) Mac OS are much safer alternatives to Windows.

Image

95% of ATMs across the world still run on Windows XP. Source: Imgdonkey. 

Yet in reality, PCs running Microsoft Windows are popular targets for hackers simply because they comprise the vast majority of the computers in the world. It's simply a wasted effort to write a virus targeting Macs or Linux systems, which together only account for 5% of the world's computers.

What Operation Clandestine Fox means for Google
A Homeland Security-issued warning against Microsoft's Internet Explorer could be a boon for Google (NASDAQ:GOOG)(NASDAQ:GOOGL) Chrome, which accounts for 12.7% of all PC web browsers worldwide. If Microsoft can't solve its Clandestine Fox issue soon, Chrome could experience a spike in market share.

Google intends for Chrome to house its cloud-based apps, such as Drive, GMail, and YouTube, in a miniature operating system. This mini-OS approach has been seen before in Chrome OS and the Windows 8 version of Chrome, which adds a Google Apps-based taskbar to the bottom of the screen. Chrome's greatest advantage over IE is that it quietly synchronizes search histories, bookmarks, and even autocomplete form information across multiple devices.

Therefore, users abandoning IE for Chrome might eventually get drawn into Google's ecosystem, ditching Outlook for Gmail, OneDrive for Drive, and Bing Maps for Google Maps. That will lead straight to an increased dependence on Google's ecosystem -- the vital engine that keeps sales of Android devices churning along.

What Operation Clandestine Fox means for Adobe
While this is certainly a black eye for Microsoft, it could be far worse for Adobe, which has been struggling to convert itself from a packaged software company to a cloud-based subscription one.

Adobe's reputation was severely tarnished last October after hackers broke into its servers and stole customer account information and the source code for Adobe's top products such as Adobe Acrobat and ColdFusion. The theft of the ColdFusion source code is especially troubling, since it supports the newer HTML5 standard used by many mobile apps. As a result, hackers could use the ColdFusion source code as an open guidebook to create dangerous exploits.

Meanwhile, Adobe Flash, which was directly implicated in the Clandestine Fox hack, has been exploited many times in the past. Like Javascript, Flash can execute malicious code via a plugin on a webpage upon loading to circumvent a computer's security protocols and steal information.

In 2010, Steve Jobs called Flash "the number one reason Macs crash." He also cited Symantec's statement that Flash had "one of the worst security records." Four years later, Operation Clandestine Fox looks like a firm validation of Jobs' declaration.

The next step
At the moment, there's not much computer users can do except avoid using IE and disable Adobe's Flash plugins. However, the hackers behind Operation Clandestine Fox claim that the exploit is part of an ongoing campaign, which means that this "bug" could actually be much more vicious and dynamic than a simple virus.

The longer this debacle drags on, the worse it will get for Microsoft and Adobe. Microsoft will struggle with keeping its IE users from flocking to Chrome, while Adobe will have a tough time convincing its corporate customers that it takes cloud-based security seriously.

6 stock picks poised for incredible growth
They said it couldn't be done. But David Gardner has proved them wrong time, and time, and time again with stock returns like 926%, 2,239%, and 4,371%. In fact, just recently one of his favorite stocks became a 100-bagger. And he's ready to do it again. You can uncover his scientific approach to crushing the market and his carefully chosen six picks for ultimate growth instantly, because he's making this premium report free for you today. Click here now for access.

Leo Sun owns shares of Apple. The Motley Fool recommends Adobe Systems, Apple, Google (A shares), and Google (C shares). The Motley Fool owns shares of Apple, Google (A shares), Google (C shares), and Microsoft. Try any of our Foolish newsletter services free for 30 days. We Fools may not all hold the same opinions, but we all believe that considering a diverse range of insights makes us better investors. The Motley Fool has a disclosure policy.

1 Key Step to Get Rich

Our mission at The Motley Fool is to help the world invest better. Whether that’s helping people overcome their fear of stocks all the way to offering clear and successful guidance on complicated-sounding options trades, we can help.

Feb 1, 2016 at 4:54PM

To be perfectly clear, this is not a get-rich action that my Foolish colleagues and I came up with. But we wouldn't argue with the approach.

A 2015 Business Insider article titled, "11 websites to bookmark if you want to get rich" rated The Motley Fool as the #1 place online to get smarter about investing.

"The Motley Fool aims to build a strong investment community, which it does by providing a variety of resources: the website, books, a newspaper column, a radio [show], and [newsletters]," wrote (the clearly insightful and talented) money reporter Kathleen Elkins. "This site has something for every type of investor, from basic lessons for beginners to investing commentary on mutual funds, stock sectors, and value for the more advanced."

Our mission at The Motley Fool is to help the world invest better, so it's nice to receive that kind of recognition. It lets us know we're doing our job.

Whether that's helping the entirely uninitiated overcome their fear of stocks all the way to offering clear and successful guidance on complicated-sounding options trades, we want to provide our readers with a boost to the next step on their journey to financial independence.

Articles and beyond

As Business Insider wrote, there are a number of resources available from the Fool for investors of all levels and styles.

In addition to the dozens of free articles we publish every day on our website, I want to highlight two must-see spots in your tour of fool.com.

For the beginning investor

Investing can seem like a Big Deal to those who have yet to buy their first stock. Many investment professionals try to infuse the conversation with jargon in order to deter individual investors from tackling it on their own (and to justify their often sky-high fees).

But the individual investor can beat the market. The real secret to investing is that it doesn't take tons of money, endless hours, or super-secret formulas that only experts possess.

That's why we created a best-selling guide that walks investors-to-be through everything they need to know to get started. And because we're so dedicated to our mission, we've made that available for free.

If you're just starting out (or want to help out someone who is), go to www.fool.com/beginners, drop in your email address, and you'll be able to instantly access the quick-read guide ... for free.

For the listener

Whether it's on the stationary exercise bike or during my daily commute, I spend a lot of time going nowhere. But I've found a way to make that time benefit me.

The Motley Fool offers five podcasts that I refer to as "binge-worthy financial information."

Motley Fool Money features a team of our analysts discussing the week's top business and investing stories, interviews, and an inside look at the stocks on our radar. It's also featured on several dozen radio stations across the country.

The hosts of Motley Fool Answers challenge the conventional wisdom on life's biggest financial issues to reveal what you really need to know to make smart money moves.

David Gardner, co-founder of The Motley Fool, is among the most respected and trusted sources on investing. And he's the host of Rule Breaker Investing, in which he shares his insights into today's most innovative and disruptive companies ... and how to profit from them.

Market Foolery is our daily look at stocks in the news, as well as the top business and investing stories.

And Industry Focus offers a deeper dive into a specific industry and the stories making headlines. Healthcare, technology, energy, consumer goods, and other industries take turns in the spotlight.

They're all informative, entertaining, and eminently listenable ... and I don't say that simply because the hosts all sit within a Nerf-gun shot of my desk. Rule Breaker Investing and Answers contain timeless advice, so you might want to go back to the beginning with those. The other three take their cues from the market, so you'll want to listen to the most recent first. All are available at www.fool.com/podcasts.

But wait, there's more

The book and the podcasts – both free ... both awesome – also come with an ongoing benefit. If you download the book, or if you enter your email address in the magical box at the podcasts page, you'll get ongoing market coverage sent straight to your inbox.

Investor Insights is valuable and enjoyable coverage of everything from macroeconomic events to investing strategies to our analyst's travels around the world to find the next big thing. Also free.

Get the book. Listen to a podcast. Sign up for Investor Insights. I'm not saying that any of those things will make you rich ... but Business Insider seems to think so.


Compare Brokers