Posted on 23 October 2014. The Sandworm vulnerability has been patched, but unfortunately attackers have discovered a way to bypass the patch and continue with their targeted attacks.
"As with Sandworm, these attacks once again used infected PowerPoint documents, sent as email attachments, as the means of infection," Symantec researchers warn. "The attacks are being used to deliver at least two different payloads to victims, Trojan.Taidoor and Backdoor.Darkmoon (also known as Poison Ivy)." Full Article
Attackers bypass Sandworm patch with new 0-day
Userlevel 7
+54
Be the first to reply!
Reply
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.