It seems that online baddies are again using a flaw in the Windows help system to help themselves – to access to your computer system.
As reported by Aunty last week, a flaw in the help system for certain releases of Windows, along with instructions on how to exploit it, were announced by a Chinese security firm earlier this month.
However this new Trojan, just discovered this week by security firm Symantec, is a different exploitation of that ‘help’ flaw, found in computers running Windows XP Service Pack 2 or later.
The Trojan, known as “Phel.A” (“phel” being an anagram of “help”), shows up as an .html file, and performs all kinds of nasty operations on the host computer.
Microsoft still has not released a patch for this flaw, but says that they are “taking this vulnerability very seriously” and that “an update to correct the vulnerability is currently in development”.
The Internet Patrol is completely free, and reader-supported. Your tips via CashApp, Venmo, or Paypal are appreciated! Receipts will come from ISIPP.
CashApp us
Venmo us
Paypal us
In the meantime, Symantec has a list of measures you can and should take to minimize the likelihood of Phel.A getting the best of you, along with instructions for removing the Trojan, available here.
The Internet Patrol is completely free, and reader-supported. Your tips via CashApp, Venmo, or Paypal are appreciated! Receipts will come from ISIPP.
CashApp us
Venmo us
Paypal us
