Older IE versions set to become prime targets as Microsoft ends support today
Today is the official end-of-life date for any version of IE older than the latest available for the version of Windows you are running. Microsoft told us in the original life-cycle announcement which version will be supported for each OS. After the January Patch Tuesday release there will be no security updates unless you are on the supported version for that OS.
If you need to continue running an older version of IE for some reason, then you need to take precautions, because after this last IE update older versions will become a prime target.
- If you have a system with the older version of IE, remove access to the internet from anyone who does not require access. This will of course only work if the browser will be used for an application or site that is internal to your network.
- If you need to use an older version for access to an external site, you should begin putting pressure on the site owner or start looking around for alternative solutions. Although not an ideal solution, you could also inform users of those systems that they must use Chrome or Firefox for everything but that one purpose.
- You can add additional levels of protection with various products, which will containerise the browsing experience, protecting the system if the user happens to come across anything malicious.
Internet Explorer had the largest single product vulnerability count in 2014. In 2015 it moved down the list to 7, but that was mostly due to a significant increase in vulnerabilities in other products. We are likely to see around 200+ vulnerabilities identified that will go unresolved in the unsupported versions following today’s end-of-life.
Source: Shavlik blog