Jump to content

IE Vulnerability - Mouse Tracking


Recommended Posts

A vulnerability in Internet Explorer versions 6 through 10 allows websites to track your mouse while they are open in the program, even if IE is minmized. While RuneScape bank pins should be safe against this as the numbers move around, anyone who uses an onscreen keyboard to avoid any potential keyloggers would be vulnerable.

 

From this article on spider.io:

 

On the 1st of October, 2012, we disclosed to Microsoft the following security vulnerability in Internet Explorer, versions 6–10, which allows your mouse cursor to be tracked anywhere on the screen—even if the Internet Explorer window is minimized. The vulnerability is particularly troubling because it compromises the security of virtual keyboards and virtual keypads.

 

...

 

Whilst the Microsoft Security Research Center has acknowledged the vulnerability in Internet Explorer, they have also stated that there are no immediate plans to patch this vulnerability in existing versions of the browser. It is important for users of Internet Explorer to be made aware of this vulnerability and its implications.

 

The vulnerability is already being exploited by at least two display ad analytics companies across billions of page impressions per month.

 

...

Link to comment
Share on other sites

Perhaps it should also be pointed out that the official RS client uses IE to run the game. Be careful people.

 

f2punitedfcbanner_zpsf83da077.png

THE place for all free players to connect, hang out and talk about how awesome it is to be F2P.

So, Kaida is the real version of every fictional science-badass? That explains a lot, actually...

Link to comment
Share on other sites

It uses IE to run the ads, so I just assumed that it was also running the game. I might be wrong. Perhaps someone more familiar could clarify.

 

f2punitedfcbanner_zpsf83da077.png

THE place for all free players to connect, hang out and talk about how awesome it is to be F2P.

So, Kaida is the real version of every fictional science-badass? That explains a lot, actually...

Link to comment
Share on other sites

Yet another reminder why you shouldn't use Internet Explorer. It takes just a few seconds to download another browser like Chrome or Firefox.

  • Like 3

mX0rmhR.gif
Click the image above to be taken to the Wilderness Guardians website.

Advisor in Wilderness Guardians

Honourary Member in Clan Europe

Ex-Leader Of Descendant Guardians and True Supremacy

Link to comment
Share on other sites

I guess even Microsoft realizes that almost no one uses IE anymore. :P

  • Like 2

 

f2punitedfcbanner_zpsf83da077.png

THE place for all free players to connect, hang out and talk about how awesome it is to be F2P.

So, Kaida is the real version of every fictional science-badass? That explains a lot, actually...

Link to comment
Share on other sites

The on-screen keyboard does jack squat to prevent keyloggers. A physical keyboard and the OSK raise the exact same key down/up/pressed events as one another.

You make it sound like running through a few level 87 monsters is hard which it really shouldn't be at your level.

riptide_mage.png

riptide_mage.png

Link to comment
Share on other sites

Nyosuht is correct. However, a keylogger masquerading as a driver for your keyboard (which is still software) can also be defeated by use of the onscreen keyboard.

"300 programmers make their futile but glorious last stand against 1000000 angry players in The battle of Misthalin. They fight for honor, glory and new content sacrificing themselves so that their game may live on. This is Madness! This Is JAGEEEX!"
Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use.