Criminals are using a new Internet Explorer security hole to attack Windows computers in targeted attacks (http://thenextweb.com/microsoft/2012/12/29/criminals-use-adobe-flash-and-new-ie-vulnerability-in-targeted-attacks-ie9-and-ie10-users-are-safe/), though the vulnerability could end up being more widely exploited. While IE9 and IE10 are not affected, versions IE6, IE7, and IE8 are. It's great to see that the latest versions of IE are immune, but this new vulnerability is still bad news for Windows XP users and earlier since they cannot upgrade to more recent versions of Microsoft's browser. "We are actively investigating reports of a small, targeted issue affecting Internet Explorer 6-8," Dustin Childs of Microsoft Trustworthy Computing told TNW. "We will take appropriate action to help keep customers protected once our analysis is complete. People using Internet Explorer 9-10 are not impacted.

http://tech.slashdot.org/story/12/12/29/2046220/new-ie-vulnerability-used-in-targeted-attacks-ie9-ie10-users-safe