The lesser known and stealthy Hanjuan Exploit Kit, which for almost two months was using a Flash Player zero-day (CVE-2015-0313) to infect unsuspecting users, has been quite active again during the past couple of weeks.
The current malvertising campaign stems from the Engage:BDR ad network and has affected several high profile sites:
- nydailynews.com
- metacafe.com
People surfing with Adobe Flash Player 16.0.0.296 are vulnerable to a drive-by download attack that happens within seconds in the background.
Full Article