What happened? On 10 June Microsoft issued a huge security update for versions seven to 11 of Internet Explorer (IE), patching 59 vulnerabilities, including one in IE8 spotted by Hewlett-Packard security researchers in October 2013. Microsoft was told about the flaw then, but waited until now to fix it. That delay was defended by Dustin Childs, group manager at Microsoft Trustworthy Computing, who wrote on the Microsoft Security Response Center blog: "Until something actually occurs, it is still theory; we're taking the theoretical and making practical updates against future 'what ifs'." Some security experts agreed, saying hackers wouldn't have had enough information to take advantage.
展开▼
