Apparently there is a serious security vulnerability in IE 7 that wasn't discovered until hackers began exploiting it. You can find out more at this Daily Kos diary.
The recommendation is to switch to another browser at least until Microsoft issues a patch. Unfortunately, I know of people who use the internet on the job and are basically down if they can't use IE because the websites they need to access only function properly with IE. So I'd recommend at least a three part solution though there are additional steps you can take (and the first step always applies anyway):
1. Don't say Yes or OK to requests on the internet that take you by surprise even if it appears someone is trying to help you. Don't download anything or allow any site to scan your system if you don't know the source and can't find independent sources who will vouch for it.
2. Keep your anti-virus software up to date and scan your system regularly.
3. Figure out how to apply pressure on companies whose websites only work properly when employing Microsoft's proprietary technology. That can be a tall order, I know.
I'd suggest forgoing Internet Explorer altogether. Firefox is leaner, meaner and more secure. Chrome is fast and secure, too.
I'd love to put IE out of my mind. Unfortunately I know people who are forced into using it as I've suggested in the post. If, for example, you want to submit a warranty claim to a manufacturer's website and that site only supports IE ...
I acknowledge the "built for IE" problem. For those who can avoid it, though, we should also remember that browsing by its nature just isn't all that secure a process. So if you're serious about security, while browsing you may want to avoid not only IE but Windows as well in favour of some more secure operating system such as Linux.
There are many people who are stuck with Windoze and others for whom another OS isn't a practical option - I fall into both categories. Unless you are absolutely stuck with Windoze for everything, it isn't an either or situation. There is an excellent small version of Linux that can run from a live cd, a USB stick or in a virtual machine on Windoze. It's called Puppy Linux. It runs entirely in ram and frankly runs like a bat out of hell on a fairly modern machine. The only thing I have found that it won't work with is a software modem.
There are also other versions of Linux that can be installed and run from in a Windoze directory like any other program without the need for a separate partition. I haven't used them but I can dig up a link if anyone is interested. I do not recommend dual booting Windoze and Linux from the same hard drive. I know it can work and people do it all the time but I have also seen it produce disastrous results. Hard drives are so cheap these days it isn't worth the risk.
If you are completely stuck with Windoze for everything, you will find the risk to your machine is directly proportional to the number of Microsoft apps you are running. Don't use IE or any version of Outlook/Outlook Express if possible. If you can't avoid those two malware magnets, following pogge's advice and backup everything. A lot.
Great scare tactics. Great for my business… But would you mind adding a few details? What is the NAME of the “virus” (all major A/V’s name things - like mydoom.v) Also, other than “perform windows updates” - how do you DETECT if your computer is infected? [file names, even if random, sort of help a bit, eh? ]
I didn't advise about a particular virus. I advised about a vulnerability which could conceivably be exploited by multiple viruses including some that haven't been written yet. I would think someone in the business would understand the difference.
Performing Windows updates doesn't help detect infection (unless you're referring to the specific tool MS supplies as a "malicious software removal tool"). You detect infection by scanning your system with A/V software or, better yet, by running an A/V product that's resident in memory and detects the attack before your system is infected.
If you'd like more information about this particular vulnerability, I'd suggest you follow the link. That's kinda why it's there.