![]() ![]() ![]() Microsoft has not revealed the targets of the attack, but it does say the attacks were "low volume," and discusses Stronium's focus on political targets in its blog post. Some email accounts have been compromised by spear phishing attacks by Fancy Bear/Stronium - although it's not immediately clear if the vulnerability disclosed by Google was used for this. The news comes after American intelligence officials accused Russian spies of hacking into the emails and systems of Democratic Party officials in an apparent attempt to undermine the legitimacy of next week's Presidential election. elevate privileges in order to escape the browser sandbox," and then finally "install a backdoor to provide access to the victim’s computer." If successful, the attacker would "exploit Flash to gain control of the browser process. The exploit relied in vulnerabilities in both Windows and Adobe's Flash software, and was spread using spear-phishing - spoofing emails to trick users into clicking on links or downloading files. Google didn't say who buy, but Microsoft has now shed light on that - with company exec Terry Myerson pointing the finger at a Stronium, a Russian government-linked hacking group also known as Fancy Bear or APT 28. Google didn't give Microsoft its usual 60-day timeframe for fixing because it said it saw evidence that the vulnerability was being actively exploited. ![]() The problem had first been brought to light by Google, who went public with news of the vulnerability after Microsoft failed to patch it within ten days of being informed about it. The Californian computing giant said on Tuesday that it plans to issue a patch to fix the issue on November 8. It often indicates a user profile.Ī hacking group linked to the Russian government is behind recent cyber attacks that exploit a newly discovered flow in Windows, according to Microsoft. Account icon An icon in the shape of a person's head and shoulders. ![]()
0 Comments
Leave a Reply. |