Monday, October 09, 2006

Crime Ring Targets IE 'Setslice' Flaw

Ryan Naraine writes on eWeek:

In-the-wild exploits against the latest unpatched Windows vulnerability have started circulating, using Internet Explorer as the attack vector to load identity theft Trojans and rootkits on infected machines.

The exploits target a Windows Shell vulnerability that was first released during the Month of Browser Bugs project in July. The project was kicked off by security researcher HD Moore (famous for creating the open-source penetration testing tool Metasploit).

The exploits are being launched by a known cyber-crime organization operating out of Russia, according to virus hunters tracking the threat.

More here.

0 Comments:

Post a Comment

<< Home