Thursday, April 1, 2010

China Hardest Hit by Latest IE Malware Attacks

Via Threatpost.com -

Computer users in China and Korea were the hardest hit by the latest wave of zero-day [CVE-2010-0806] malware attacks targeting a flaw in the Internet Explorer browser, according to data released by the Microsoft Malware Protection Center (MMPC).

The attacks, first spotted on March 9, included Trojan downloaders and backdoor programs that gave malicious hackers full access to hijacked PCs.

According to the MMPC, the targets have spanned over 50 countries, with the most frequently targeted computers in China and Korea, with the US trailing a distant third place.

[...]

The MMPC said the attack landscape escalated immediately after proof-of-concept come was released and fitted into public exploit testing tool like Metasploit.

Unprotected users are susceptible to infection when they browse to a malicious Web page that attempts to exploit this vulnerability. If the exploit is successful, a number of malware families may be installed on the victim’s computer. The majority of malware downloaded after a successful exploit are trojans.

The group listed at least six Trojan variants related to these attacks and said it expects the threat landscape to mellow with the release and adoption of the just-released emergency IE patch.

-------------------------------------

http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0806

Use-after-free vulnerability in the Peer Objects component (aka iepeers.dll) in Microsoft Internet Explorer 6, 6 SP1, and 7.

This vulnerability was recently fixed in the OOB IE Patch released (MS10-018).

No comments:

Post a Comment