Ashley Carman, Editorial Assistant November 20, 2014
McAfee researchers have discovered a new RTF exploit aimed at Indian people and businesses
The exploit takes advantage of the Microsoft Word ActiveX control vulnerability CVE-2012-0158 and uses timely news to serve up malicious content, according to McAfee's post on the attack. The attack is delivered through an attachment on a spear phishing email. The exploit drops dw20.exe in the %temp% directory and then goes on to drop gupdate.exe in the same spot. This last file will connect to control servers.
Full Article
RTF exploit is delivered through spear phishing scheme
Userlevel 7
+54
Be the first to reply!
Reply
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.