Firewalls, Antivirus, Antiphishing etc. - all useless against this one... http://www.doxpara.com/ (see WSJ, BBC etc.) Ok, I'm not techie but I try to be aware of security isues. So this bug was discovered and quietly fixed before the bad guys found out we all could be duped into giving out our ID's, account numbers etc. Now if I was a hacker I'd mimic broker sites. So I download the MS patch and use the DNS checker. Still comes up vulnerable to DNS poisoning. Has anyone tried the MS patch and did it work?