Experts Observe that Cybercriminals Exploiting Previously Unknown Flaw in IE10

Researchers of security firm FireEye recently said that a recent edition of Microsoft's Internet Explorer (IE) web browser (talking of IE10) has a flaw previously unknown which is now being exploited to attack Internet users and spread computer virus.

FireEye discovered the flaw (CVE-2014-0322) on 11th February, 2014. The attackers inserted an Iframe on vfw.org or website of 'Veterans of Foreign Wars' which loaded the attacker's own page in the backdrop and then ran a Flash object that devised the remaining exploit.

FireEye notes that the exploit strikes IE10 with Adobe Flash and aborts if the user is browsing with a different edition of IE.

FireEye nicknamed this assault as 'Operation SnowMan' and experts observe that the main objective of SnowMan attack may be targeting members of defense services to embezzle army intelligence by implanting backdoor Trojan on their machines. FireEye also said that active military officers and those retired both use the site of VFW.

FireEye said that the attack in question seems linked to preceding attacks on Japanese financial sector and researchers of security firm Bit9 and Symantec accredited these assaults to a large and well-ordered group in China.

Security firm Websense said that surprisingly it found similar attack code on a page set up on 20th January, 2014 with a web address almost similar to one employed by a French-based aerospace association.

Businessspectator.com.au published a report on 17th February, 2014 quoting Alexander Watson, Director of Security Research of Websense as saying that the assaults suggest the usage of the vulnerability for at least 3 weeks and might have succeeded formerly against higher-value targets without being identified.

Businessspectator.com.au published a report on 17th February, 2014 quoting the confirmation of Randi K Law, Spokeswoman for VFW, as saying that there is presently no indication of hijacking of any associate or supporter data.

Rawstory.com published a statement on 14th February, 2014 mentioning a comment of Scott Whiteaker, Spokesman of Microsoft, on the abovementioned attack as the company was known to the targeted attacks and was probing and will take steps to protect patrons.

However, both FireEye and Microsoft recommend to upgrade IE10 to IE11 which is not affected by the above attack.

» SPAMfighter News - 2/24/2014