21 matches found
Sophisticated MATA Framework Strikes Eastern European Oil and Gas Companies
An updated version of a sophisticated backdoor framework called MATA has been used in attacks aimed at over a dozen Eastern European companies in the oil and gas sector and defense industry as part of a cyber espionage operation that took place between August 2022 and May 2023. "The actors behind...
Google Warns of Internet Explorer Zero-Day Vulnerability Exploited by ScarCruft Hackers
An Internet Explorer zero-day vulnerability was actively exploited by a North Korean threat actor to target South Korean users by capitalizing on the recent Itaewon Halloween crowd crush to trick users into downloading malware. The discovery, reported by Google Threat Analysis Group researchers...
RIG Exploit Kit Now Infects Victims' PCs With Dridex Instead of Raccoon Stealer
The operators behind the Rig Exploit Kit have swapped the Raccoon Stealer malware for the Dridex financial trojan as part of an ongoing campaign that commenced in January 2022. The switch in modus operandi, spotted by Romanian company Bitdefender, comes in the wake of Raccoon Stealer temporarily...
New RIG Exploit Kit Campaign Infecting Victims' PCs with RedLine Stealer
A new campaign leveraging an exploit kit has been observed abusing an Internet Explorer flaw patched by Microsoft last year to deliver the RedLine Stealer trojan. "When executed, RedLine Stealer performs recon against the target system including username, hardware, browsers installed, anti-virus...
InkySquid State Actor Exploiting Known IE Bugs
The InkySquid advanced persistent threat APT group, which researchers have linked to the North Korean government, was caught launching watering hole attacks against a South Korean newspaper using known Internet Explorer vulnerabilities. New analysis from Volexity reported its team of researchers...
NK Hackers Deploy Browser Exploits on South Korean Sites to Spread Malware
A North Korean threat actor has been discovered taking advantage of two exploits in Internet Explorer to infect victims with a custom implant as part of a strategic web compromise SWC targeting a South Korean online newspaper. Cybersecurity firm Volexity attributed the watering hole attacks to a...
CVE-2021-26411
Internet Explorer Memory Corruption Vulnerability...
CVE-2021-26411 Internet Explorer Memory Corruption Vulnerability
...
CVE-2021-26411 Internet Explorer Memory Corruption Vulnerability
...
CVE-2021-26411
CVE-2021-26411 (Internet Explorer Memory Corruption) is a memory-corruption vulnerability in IE that was exploited in the wild as a zero‑day. Project Zero’s analysis attributes two primary bug patterns to IE exploitation: a use-after-free caused by a user-controlled callback between object operat...
CVE-2021-26411
Internet Explorer Memory Corruption Vulnerability Recent assessments: ccondon-r7 at April 05, 2021 1:20pm UTC reported: There is now public threat intelligence that the Purple Fox exploit kit has incorporated this vulnerability and is exploiting it. gwillcox-r7 at March 11, 2021 5:57pm UTC...
CVE-2021-26411
creationtimestamp| type| source ---|---|--- 2021-03-10 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=560 2021-03-10 15:20:45+00:00| exploited| https://t.me/truesecator/1504 2021-03-11 19:00:31+00:00| seen| https://t.me/cibsecurity/24780 2021-03-15 04:50:46+00:00|...
March 2021 Patch Tuesday – 82 Vulnerabilities, 10 Critical, Adobe
This month’s Microsoft Patch Tuesday addresses 82 vulnerabilities, of which 10 are rated with Critical severity. This follows an out-of-band security update on March 2 to address critical vulnerabilities in Microsoft Exchange. Adobe released patches today for its FrameMaker, Creative Cloud Deskto...
KLA12108 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Internet Explorer can be exploited remotely to execute arbitrary code. 2....
VulnCheck KEV: CVE-2021-26411
Microsoft Internet Explorer contains an unspecified vulnerability that allows for memory corruption...
Microsoft Internet Explorer Memory Corruption (CVE-2021-26411)
A memory corruption vulnerability exists in Microsoft Internet Explorer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
KB5000807: Windows 10 March 2021 Security Update
The remote Windows host is missing security update 5000807. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2021-1640, CVE-2021-26862, CVE-2021-26866, CVE-2021-26868, CVE-2021-26871,...
KB5000808: Windows 10 Version 1909 March 2021 Security Update
The remote Windows host is missing security update 5000808. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2021-1640, CVE-2021-1729, CVE-2021-24090, CVE-2021-24095, CVE-2021-26860,...
KB5000803: Windows Security Update (March 2021)
The remote Windows host is missing security update 5000803. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability. An attacker can exploit this to disclose potentially sensitive information. CVE-2021-24107, CVE-2021-26869, CVE-2021-26884 - An memory...
KB5000809: Windows 10 Version 1803 March 2021 Security Update
The remote Windows host is missing security update 5000809. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability. An attacker can exploit this to disclose potentially sensitive information. CVE-2021-24107, CVE-2021-26869, CVE-2021-26884 - An memory...