Microsoft patched the zero-day security flaw for Internet Explorer (IE) early this morning.
The flaw allowed malicious websites to execute code on a device for virtually every version of IE.
Microsoft noted that there were attacks detected using the flaw in an alert issued on April 26.
The vulnerability was serious enough for governments, including the U.S., to recommend not using the browser until it was patched.
If you have automatic updates enabled on your device, the patch will install automatically.
You can also manually install the update at Microsoft’s website: http://www.microsoft.com/en-us/download/internet-explorer.aspx
Microsoft also issued the security update for Windows XP users. Service for the operating system ended on April 8 and there was questions on whether the company would patch the non-supported software.
Note that this not not mean the Microsoft is backing off of ending support for Windows XP.
From the Microsoft blog post on the patch:
“Windows XP is no longer supported by Microsoft, and we continue to encourage customers to migrate to a modern operating system, such as Windows 7 or 8.1. Additionally, customers are encouraged to upgrade to the latest version of Internet Explorer, IE 11.”