Microsoft Patches IE Flaw
On Friday Microsoft released a patch for the flaws exploited by the recent Download.Ject attack. The patch is labeled a configuration change, and prevents an ActiveX component from writing to the system. While the flaws have been known for over 9 months, only recently have they been exploited. The patch is available through Windows Update. More information can be found on Microsoft's site.