Microsoft Internet Explorer flaw – your cursor movements can be tracked even if browser is minimised!

A new Internet Explorer vulnerability has been discovered which could be used by an attacker to track your mouse cursor anywhere on the screen, even if the browser isn’t being actively used.

This security hole was discovered by the spider.io and was disclosed to Microsoft. Even-though Microsoft Security Research Center has acknowledged the vulnerability in IE, they have stated that there are no immediate plans to patch this vulnerability in existing versions of the browser.

internet-explorer-security-flaw

Browser versions of 6, 7, 8, 9 and 10 are reportedly said to be affected. The vulnerability is particularly troubling since it  compromises the security of virtual keyboards and virtual keypads which we use widely in banking sites !

Even if you are very conscious about security and never install any add-on or software, the attacker can get easy access to your mouse movements simpl,y by buying a display ad slot on any webpage you visit. This is not restricted to lowbrow porn and file-sharing sites but from YouTube to the New York Times!

As long as the page with the exploitative advertiser’s ad stays open (be it pushed to a background tab or been minimised) , your mouse cursor can be tracked across your entire display.
You should definitely be knowing these details if you use IE ! Watch the Demo!

Source : spider.io