• Articles
    • Editorial Articles
    • Research Articles
    • WatchGuard Articles
  • The 443 Podcast
  • Threat Landscape
  • About
    • About Us
    • Contact Us
    • Contribute to Secplicity

Secplicity - Security Simplified

Powered by WatchGuard Technologies

Upgrade to IE11 or Edge No Matter What – Daily Security Byte EP. 202

January 13, 2016 By Corey Nachreiner

Last month, I warned you that Microsoft planned to End-of-Life all version of Internet Explorer (IE) after January 12, except version 11. This means they will only release security updates for IE11 and the new Edge browser, so if you use Microsoft browsers you need to upgrade to stay safe. However, in today’s video I tell you why you need to upgrade to IE11 (or Edge) even if you don’t plan on using Microsoft’s browsers.

(Episode Runtime: 2:24)

Direct YouTube Link: https://www.youtube.com/watch?v=EkZeCHAXpww

EPISODE REFERENCES:

  • Microsoft blog post about why you should upgrade to IE11 even if you remove it – Microsoft

— Corey Nachreiner, CISSP (@SecAdept)

Share This:

Related

Filed Under: Security Bytes Tagged With: Adobe, Edge, Hacking, Infosec news, Internet Explorer, IPS, Microsoft, Microsoft Black Tuesday, Reader, silverlight, Software vulnerabilities, Updates and patches

Comments

  1. Brandon says

    January 14, 2016 at 2:39 am

    what to do for windows server 2012 products that cant be updated to IE 11? Recommendations?

    Reply
    • Corey Nachreiner says

      January 14, 2016 at 10:15 am

      Brandon, My understanding is that IE11 is pre-installed in Server 2012 (at least R2) even though MS doesn’t really support it (and that doesn’t get to recommending agains browsing from servers… though you still want to update those IE related components).

      Also, what David mentioned below is probably true, but I feel like Microsoft themselves have conflicting messaging around this. In my Dec 7. video, Microsoft’s own FAQ mentions that one some OSes, that aren’t EoL, they will still support 9 and 10:

      https://support.microsoft.com/en-us/lifecycle#gp/Microsoft-Internet-Explorer

      Yet the new MS blog post seems to make clear otherwise:

      http://blogs.msdn.com/b/patricka/archive/2016/01/08/if-i-remove-or-don-t-use-internet-explorer-8-9-or-10-can-i-avoid-upgrading-to-internet-explorer-11.aspx

      I guess we will see… but it is true that there are older version of Windows, that haven’t been EoLed yet, that can’t go to IE11.

      Reply
  2. David Weston says

    January 14, 2016 at 7:03 am

    Microsoft will continue to support whatever is the latest version of IE that your (supported) version of Windows will run.

    Reply
  3. Corey Nachreiner says

    January 14, 2016 at 11:39 am

    In a related note… Windows 8 users should be sure to update to 8.1, as apparently no security updates for 8 any longer: http://www.winbeta.org/news/no-windows-8-security-patches-january-12?

    Reply
  4. Andy S says

    January 15, 2016 at 1:15 am

    If only this was possible. Many Windows 7 clients will fail to update to IE10 or IE11, even after running all the MS SUR tools and following the KB check lists. There is no way round this other than an in-place recovery install or a reimage. I’ve been troubleshooting this on many of my client OS since you first raised this (thanks!) and my belief is that this situation arises where the Disk Cleanup option “Windows Update Cleanup” has been run on a client workstation on more than one occasion.

    Reply
    • Corey Nachreiner says

      January 15, 2016 at 10:40 am

      That sounds like a pain, while their FAQ suggest they may release IE9 and 10 updates for a few systems where its impossible to update to 11, it looks like IE11 is the only choice for Win7… so if some folks are having update issues, MS might want to rethink this?

      Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

The 443 Podcast

A weekly podcast featuring the leading white-hat hackers and security researchers. Listen Now
the 443 podcast

Threat Landscape

Filter and view Firebox Feed data by type of attack, region, country, and date range. View Now
threat landscape

Top Posts

  • Cybersecurity News: Free Cybersecurity Training, TrickBot Group Exposed, Major GoDaddy Breach, and Russia to Legalize cybercrime?!
  • US National Cybersecurity Strategy
  • 3CX Supply Chain Attack
  • Here Come The Regulations

Email Newsletter

Sign up to get the latest security news and threat analysis delivered straight to your inbox

By signing up you agree to our Privacy Policy.


The views and opinions expressed on this website are those of the authors and do not necessarily reflect the policy or position of WatchGuard Technologies.

Stay in Touch

Recent Posts

  • 3CX Supply Chain Attack
  • The NSA’s Guidance on Securing Authentication
  • Cybersecurity News: LastPass Incident Revealed, White House Issues Cybersecurity Strategy, FBI Purchases Leaked USHOR PII Data, and a Slew of Other Breaches
  • An Update on Section 230
  • Here Come The Regulations
View All

Search

Archives

Copyright © 2023 WatchGuard Technologies · Cookie Policy · Privacy Policy · Terms of Use