Issue: Microsoft recently acknowledged a security flaw in its widely used Internet Explorer browser that could put Online Banking members at risk. This vulnerability is commonly known as an “use-after-free” flaw. This is affecting Internet Explorer versions 6 through 11.
Description: This vulnerability allows an attacker to host a specially crafted website that is designed to exploit this vulnerability through Internet Explorer. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. To make the attack successful however, users would have to be directed to take action, typically by getting users to click a link in an email message or in an Instant Messenger message that takes users to the attacker’s website, or by opening an attachment sent through email.
Recommendation: Since the issue pertains to a flaw in the Internet Explorer browser that may be used to conduct Online Banking transactions on your personal computers, we are urging our members to use a different browser to mitigate the risk until Microsoft releases a fix to address this issue. Chrome, Firefox or Safari (for Apple users) can be used in the meantime.
If you have any further questions or concerns, please contact Member Services at 866.750.0100 or email firstname.lastname@example.org.