1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Russian hackers uses Flash, Windows zero-day flaws

Discussion in 'CSO' started by RSS, Apr 20, 2015.

  1. RSS

    RSS New Member Member

    A fresh attack by a long-known hacking group suspected to be linked with Russia did little to mask its activity in an attack a week ago.

    The computer security firm FireEye wrote on Saturday that the group -- called APT 28 -- attacked an "international government entity" on April 13, using two recently disclosed software flaws, one of which has not been patched.

    The attack sought to trick victims into clicking on a link that led to a website which attacked their computer. It first used a vulnerability in Adobe Systems' Flash player, CVE-2015-3043, then used a still unpatched Microsoft vulnerability, CVE-2015-1701, to gain higher privileges on a computer.

    To read this article in full or to leave a comment, please click here

    Continue reading...
     

Share This Page