The vulnerability in Internet Explorer that we reported on Friday is quickly being taken advantage of, says the Washington Post's Brian Krebs, and more than 200 web sites have been altered by hackers to include malicious code to exploit it. Sites being seeded with infectous code include small business sites that most users would never suspect of harboring malicious software. When an Internet Explorer user visits such a site, all kinds of malware may be silently installed on their computers, including programs which steal passwords and credit card numbers. Microsoft has yet to release a patch and likely won't for another two weeks when Patch Tuesday rolls around. They're still advising users to disable Active Scripting, but Krebs is recommending much more direct action that I echo: drop Internet Explorer and install Firefox or Opera.