Keylogging - don't be a victim

[Roland]

Unfortunately in this case, disallowing the running of scripts may not save you from what the hackers were using. They were exploiting some bad code in how MS Windows handles animated cursors. And that can come from the website sending data for an animated cursor for any browser to display, since the coding loophole is in one of the base DLLs used by windows to handle its GUI. Essentially all that you would have needed to do was go to an infected webpage; no need to click or mouse over anything there to get infected.

http://www.zone-h.org/content/view/14682/92/
http://news.bbc.co.uk/2/hi/technology/6526851.stm

Make sure you get the latest security patch from MS since this loophole has been lurking in the code since Windows NT and was still in there for the Vista release.

My Windows Update broke a long time ago. Every time I try to run it, the page just keeps going. It never finishes verifying the software. Stupid MS, how I hate thee.