Coordinated leet attackers smell like China's infamous APT1
By Darren Pauli, 15 May 2014
AusCERT April's Internet Explorer flaw is being exploited, with at least two listed Australian entities targeted by a sophisticated foreign hacking outfit.
The organisations were targeted in a campaign that foisted the Internet Explorer exploits (MS14-021) at high end corporations three days after the dangerous flaws were exposed.
Security firm FireEye reported the attacks to El Reg and said the perps were part of a well-resourced and organised group in which the use of zero day exploits was delegated by what it (called a quartermaster (pdf)) to teams of various skill sets and objectives.
"This group was known to introduce zero days, and was the higher-end in top level [attack groups],"FireEye engineering manager Rich Costanzo said.
Full Article
Latest IE flaw being actively exploited
Userlevel 7
+54
Userlevel 7
Thanks Jeff. Great article as usual.
Microsoft issued an emergency unscheduled patch when the attacks were revealed earlier this month, even deciding Windows XP deserved one last patch.
Sadly, I doubt that one last patch will keep XP up and running...
- Jeff
Microsoft issued an emergency unscheduled patch when the attacks were revealed earlier this month, even deciding Windows XP deserved one last patch.
Sadly, I doubt that one last patch will keep XP up and running...
- Jeff
Userlevel 7
Thanks for sharing these news Jasper!
Reply
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.