OOPS! IE DID IT AGAIN

A variant of the MyDoom virus has hit a web browser near you. The virus writers hacked into the servers of a German ad serving and email marketing company, enabling them to infect computers via web banner ads.

During a 12-hour window over the weekend, hackers broke into a load balancing server that handles ad deliveries for Germany's Falk eSolutions and successfully loaded exploit code on banner advertising served on hundreds of Web sites.

The exploit (Bofra/IFrame) takes advantage of an IE vulnerability reported to MS earlier this month. The article goes on to say that

The flaw, which does not affect IE users running Windows XP Service Pack 2 (SP2), has not yet been patched.

Well, now that puts the consumer in quite a bind, doesn't it? I posted my problems with SP2 earlier.

Falk said that under 2 percent of users were affected by the virus.