Trojan Blips Under Microsoft Radar, Targets IE

REDMOND, Wash. — Although the Trojan known as “Delf-DH” was originally spotted by Microsoft security experts more than six months ago, news surfaced this week that initial prevention methods failed to realize the malicious software’s full potential.

The possibility has led to serious speculation in the tech community that Microsoft may release an emergency patch to rectify the situation.

Normally, Microsoft releases its updates on a set monthly basis, and is currently scheduled to release its next series of patches on Dec. 13, but security experts at the SANS Institute Internet Storm Centre said an out-of-cycle release is likely.

“I know that I am watching and waiting to see if Microsoft is going to release an out-of-cycle patch, or wait for the Dec. 13 patch day,” Scott Fendley of SANS said. “If I were a gambler, I might actually bet on Microsoft releasing it early.”

Fendley recommended IE users turn off Java script or use an alternative browser until the issue is resolved.

“This issue was originally reported to the public in May as being a stability issue that caused the browser to close,” said Microsoft officials in an updated advisory on the software giant’s website. “Since then, new information has been posted that indicates remote code execution could be possible.”

Delf-DH takes advantage of a vulnerability in Microsoft’s Internet Explorer browser, infecting unprotected Windows users who inadvertently download the Trojan off of malicious websites. Once installed, Delf-DH downloads malware that monitors user activity and redirect surfers to porn sites.

Microsoft admitted that even fully patched Windows 2000 and Windows XP systems are at risk of infection, though the company downplayed the seriousness of the Trojan.

“Upon completion of this investigation, Microsoft will take the appropriate action to help protect our customers,” the company advisory said.

Copyright © 2026 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More News

Peter Hooke Launches New Paysite

Peter Hooke has launched an official website through PAYSITE.

Pineapple Support Names Ny Ny Lew as Brand Ambassador

Pineapple Support has named Ny Ny Lew as its newest brand ambassador.

Federal AV Proposal Passes House, Faces Senate Opposition

The U.S. House of Representatives on Monday passed the Kids Internet and Digital Safety (KIDS) Act, which includes provisions to make age verification by adult websites federal law, but the bill still faces tough going in the Senate.

Devin Drills Launches New Paysite

Creator Devin Drills has launched an official website through PAYSITE.

AV Bulletin: Midyear Roundup

Since the U.S. Supreme Court’s decision in Free Speech Coalition v. Paxton, more state age verification laws have been enacted around the United States, as well as proposed at the federal level and in other countries. Meanwhile, lawsuits resulting from AV laws have begun to play out in the courts. This roundup provides an update on the latest news and developments on the age verification front as it impacts the adult industry.

Judge Dismisses Last NCOSE-Backed Suit Over Kansas AV Law

A federal judge on Monday dismissed a lawsuit alleging that adult site SuperPorn violated Kansas’ age verification law, citing lack of jurisdiction after similarly dismissing two related cases earlier this year.

ASACP Updates 'Restricted to Adults' Labeling Resource Page

The Association of Sites Advocating Child Protection (ASACP) has updated its Restricted to Adults (RTA) labeling resource page.

Federal AV Proposal Scores Minor Win in House but Remains in Doubt

A newly announced bipartisan agreement in the U.S. House of Representatives Committee on Energy and Commerce may soon bring a proposed federal age verification law before the full House, but the measure continues to face an uphill battle.

Arizona Governor Vetoes 'Protect Act' With New Consent Provisions

Arizona Governor Kate Hobbs on Friday vetoed HB 2133, the “Protect Act,” which would have imposed new requirements for adult content uploaded online.

Brazil Begins Monitoring 18 Adult Sites for AV Compliance

Brazil’s National Data Protection Authority (ANPD) is now monitoring 18 high-traffic adult websites for compliance with the country’s Digital Statute for Children and Adolescents (Digital ECA), which requires such sites to age-verify users located in Brazil.

Show More