Chinese hackers tap browser security flaw

REDMOND, Wash., Dec. 16 (UPI) -- U.S. computer giant Microsoft Corp. says it is monitoring a hacking threat aimed at users of its popular Internet Explorer 7 Web browser.

The Redmond, Wash., company Monday issued a security update in which it said it was aware of an effort by Chinese computer hackers to target a vulnerability in the browser that allows personal computers to be hijacked when visiting infected Web sites, the British tabloid The Daily Mail reported Tuesday.

As many as 10,000 Web sites have been altered to exploit the flaw, security researcher Paul Ferguson of the anti-virus software producer Trend Micro told the newspaper. Ferguson said the malicious code was initially intended to steal computer gaming passwords but concerns have escalated the flaw could be exploited by "more financially motivated criminals for more serious mayhem."

The compromised Web sites, which so far have been mostly Chinese, are reportedly used to steal passwords that can be sold on the black market for up to $14,000 to fanatical gamers.

Officials said Microsoft is moving to fix the Internet Explorer problem in its regular monthly security update, or it may issue an emergency software patch.