Browse by Tags

The fourth platform of IE10 simplifies building cross-site scenarios that work consistently across browsers by supporting Cross-Origin Resource Sharing (CORS) for XMLHttpRequest (XHR) . CORS for XHR makes sharing data across sites simple and flexible. In the most basic scenario CORS enables creating...

The bad guys didn’t take a holiday vacation: Internet Explorer’s SmartScreen service blocked nearly 2 million malware downloads per day on average from mid-December through New Year’s. December 25 saw a 30% spike in malware blocks— successfully preventing users from being tricked into giving their PCs...

The December 2011 Cumulative Security Update for Internet Explorer is now available via Windows Update . This security update resolves three privately reported vulnerabilities in Internet Explorer. The most severe vulnerabilities could allow remote code execution if a user visits a specially crafted...

The October 2011 Cumulative Security Update for Internet Explorer is now available via Windows Update . This security update resolves eight privately reported vulnerabilities in Internet Explorer. The most severe vulnerabilities could allow remote code execution if a user views a specially crafted Web...

The August 2011 Cumulative Security Update for Internet Explorer is now available via Windows Update . This security update resolves five vulnerabilities in Internet Explorer that were disclosed in coordination with Microsoft and two publicly disclosed vulnerabilities. The most severe vulnerabilities...

The Web is better when developers can build safer experiences in their sites. With each release of Internet Explorer, we’ve led the way with improvements to the browser to help ensure a safe and secure browsing experience. Now IE10 Platform Preview 2 includes full support for HTML5 Sandbox technology...

Mixed content on a Web page puts consumers at risk of man-in-the-middle attacks, especially as consumers spend more time browsing from untrusted public networks (like free WiFi in coffee shops and airports). An attacker can view page content that a consumer expected to be delivered securely, and even...

The June 2011 Cumulative Security Update for Internet Explorer is now available via Windows Update . This security update resolves seven vulnerabilities in Internet Explorer that were disclosed in coordination with Microsoft. The vulnerabilities could allow remote code execution if a user visits a...

Internet Explorer now gives you more control over the data that Web sites store on your computer. This includes Flash Player’s Local Shared Objects (LSOs). We’ve worked closely with Adobe to integrate Flash LSO deletion directly into Internet Explorer, making it easier for you to manage your...

The April 2011 Cumulative Security Update for Internet Explorer is now available via Windows Update . This security update resolves four privately reported vulnerabilities and one publicly disclosed vulnerability in Internet Explorer. This security update is rated Critical for Internet Explorer 6, Internet...

With the Internet Explorer 9 (IE9) beta in September we introduced IE9's new application reputation feature and more recently we provided a summary of how this fits into the overall layered approach to security . With the final release of IE9 now available, we want to share some additional...

The Pinned Sites feature introduced in IE9 Beta is a great way to integrate your favorite sites into the Windows 7 user experience. Better still, there are five significant security benefits in creating and using Pinned Sites for secure applications like online banking. First , when you pin a site you...

IE9’s download notification bar helps you focus on your browsing and keeps downloads out of your way. It streamlines the “quick download” scenarios which account for a majority of downloads. Overall, the IE9 file download experience offers: a streamlined end-to-end download flow, the ability to pause...

As Eric introduced in his post earlier this week, Internet Explorer offers layered defenses to protect against and mitigate each of three major classes of threats that browser users face when surfing the sometimes-hostile Web: Technological attacks designed to exploit the browser or operating system...

Internet Explorer offers layered defenses to protect against and mitigate each of three major classes of threats that browser users face when surfing the sometimes-hostile Web: Technological attacks designed to exploit the browser or operating system Web attacks designed to exploit vulnerabilities in...

ActiveX Filtering in the IE9 Release Candidate gives you greater control over how Web pages run on your PC. With ActiveX Filtering, you can turn off ActiveX controls for all Web sites and then turn them back on selectively as you see fit. While ActiveX controls like Adobe Flash are important for Web...

The February 2011 Cumulative Security Update for Internet Explorer is now available via Windows Update . This security update resolves two privately reported vulnerabilities and two publicly disclosed vulnerabilities in Internet Explorer. The vulnerabilities could allow remote code execution if a user...

The IE Cumulative Security Update for December 2010 is now available via Windows Update . This security update resolves four privately reported vulnerabilities and three publicly disclosed vulnerabilities in Internet Explorer. The most severe vulnerabilities could allow remote code execution if a user...

A new research report from independent information-security research and testing organization NSS Labs shows that Internet Explorer 9 Beta protects the user from 99% of socially-engineered malware downloads. According to NSS Labs, “ With a unique URL blocking score of 94% and over-time protection rating...

Each type of file delivered from a web server has an associated MIME type (also called a “content-type”) that describes the nature of the content (e.g. image, text, application, etc). Back in Internet Explorer 8, we made a few changes to IE’s MIME-sniffing feature that attempts to determine the actual...

When we released the IE9 beta about a month ago we talked about the importance of trust and confidence when working with downloads. Today, we are enabling the SmartScreen application reputation service to improve download protection for IE9 beta users. This feature works together with the SmartScreen...

The IE Cumulative Security Update for October 2010 is now available via Windows Update . This security update resolves seven privately reported vulnerabilities and three publicly disclosed vulnerabilities in Internet Explorer. The most severe vulnerabilities could allow remote code execution if a user...

The IE Cumulative Security Update for August 2010 is now available via Windows Update . This security update resolves six privately reported vulnerabilities in Internet Explorer. The most severe vulnerabilities could allow remote code execution if a user views a specially crafted Web page using Internet...

Cutting edge web applications push the boundaries of the web development model. In the security space, this raises an interesting question – who owns security for a web application built on a complex platform hierarchy? Is it the application at the top of the stack, the intermediate platform component...

The IE Cumulative Security Update for June 2010 is now available via Windows Update . This security update resolves five privately reported vulnerabilities and one publicly disclosed vulnerability in Internet Explorer. The most severe vulnerabilities could allow remote code execution if a user views...