![]() At the same time, a workaround has been published that should allow the failed update installation to be successfully completed. Microsoft has now confirmed that there is a problem with this update. Security update KB5034765 for Windows 11 22H2 and 23H2 from 13 February 2024 failed for some users during installation with the error code 0x800F0922. Warning about critical Outlook RCE vulnerability CVE-2024-21413 Windows 7/Server 2008 R2 Server 2012 R2: Updates (February 13, 2024)Įxchange Server Cumulative Update CU 14 (February 13, 2024) Patchday: Windows 11/Server 2022 Updates (February 13, 2024) Patchday: Windows 10 Updates (February 13, 2024) Microsoft Security Update Summary (February 13, 2024) An article on the Water Hydra attacks can be found in the blog post CVE-2024-21412: Water Hydra Targets Traders With Microsoft Defender SmartScreen Zero-Day. ![]() Trend Micro has published the blog post SmartScreen Vulnerability: CVE-2024-21412 Facts and Fixes on this topic with more details. This shows that in many cases it can be difficult to determine how widespread a zero-day vulnerability is being used by threat actors, as it is unknown to the vendor and the general public. Trend Micro reported the observation to the manufacturer in accordance with the "Responsible Disclosure" Codex, who then developed the patch released in February 2024.Īs part of the ongoing threat hunt, Trend Micro discovered that a second group is exploiting the vulnerability. However, malicious code is downloaded in the background, infecting the victim's computer. To avoid arousing suspicion, one is actually displayed. A user is tricked into believing that they are calling up an image. It affects all Microsoft Windows products that use this feature. a vulnerability that was first found by attackers and for which there was no protection from the manufacturer until Patch Tuesday. The exploitation of the vulnerability is a real 0-day, i.e. The threat actor carried out targeted attacks on banks, cryptocurrency platforms, forex and stock trading platforms and gambling sites around the world. It used social engineering in financial trading forums to lure victims. It first gained attention in 2021 through a series of campaigns targeting the financial sector. ![]() The APT group Water Hydra is also known as DarkCasino. It looks like the APT group Water Hydra has already exploited the 0-day vulnerability. It can be assumed that in three to four weeks) all well-known cyber attackers will most likely attempt to exploit these vulnerabilities. Trend Micro notes in an information that the vulnerability CVE-2024-21412 is already being actively exploited by some threat actors. The file is then checked by SmartScreen before processing. ![]() Among other things, this feature introduced a "Mark of the Web (MotW)" flag to identify a file downloaded from the Internet as a potentially dangerous download. The vulnerability bypasses the "SmartScreen", a security feature of all newer Windows installations, which was first introduced by Microsoft with Windows 8.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |