Visit our new website: worldnews.easybranches.com

Windows 0-day is exploited to install creepy Finspy malware (again)

  • Wed, 13 Sep 2017 20:41

Enlarge / The WSDL parser, where the zero-day was located. (credit: FireEye)

On Tuesday, Microsoft patched a previously unknown vulnerability that researchers say was actively exploited by an undisclosed nation to install surveillance malware on one or more vulnerable computers.

The exploit, according to a blog post published Tuesday by security firm FireEye, was embedded in a Microsoft Word document. Once opened, the document exploited a zero-day vulnerability in Microsoft's .Net framework. The exploit caused the targeted computer to install Finspy (sometimes "FinSpy"), a family of surveillance software that its controversial developer, UK-based Gamma Group, sells to governments throughout the world. Tuesday's blog post said the document might have been used to infect an unnamed "Russian speaker." The vulnerability, indexed as CVE-2017-8759, comes five months after FireEye disclosed a different zero-day being used to distribute Finspy.

"These exposures demonstrate the significant resources available to 'lawful intercept' companies and their customers," FireEye researchers wrote. "Furthermore, Finspy has been sold to multiple clients, suggesting the vulnerability was being used against other targets."

Read 4 remaining paragraphs | Comments

Biz & IT – Ars Technica

Tags


US Weekly

Related Stories

Gyj-105 инструкция
  • Tue, 26 Sep 2017 17:42

Если сколько сотовых телефонов в адыгее первый джокер куда, различные физические ...

Kids Create, Share Original Artwork with Drawp
  • Tue, 26 Sep 2017 16:40

Blank canvas will help kids express themselves creatively Techlearning RSS Feed

Uber wields new weapon in fight with London: diplomacy
  • Tue, 26 Sep 2017 13:43

Uber has followed a traditional playbook in its fight with London regulators but the company's new CEO is also trying diplomacy ABC News: Technology

Package delivery startup Doorman is shutting down
  • Tue, 26 Sep 2017 12:48

 Doorman, a startup delivering packages when you schedule them will be no more after October 6th, 2017. The startup sent a letter over the weeken...

Geographia
  • Tue, 26 Sep 2017 11:48

Pick a continent and begin exploring for World Tourism Day on 9/27! Techlearning RSS Feed

China Blocks WhatsApp, Broadening Online Censorship
  • Tue, 26 Sep 2017 11:48

With a crucial Communist Party meeting just weeks away, Beijing is further tightening its already formidable internet controls. NYT > Technology

Deloitte hit by data breach
  • Tue, 26 Sep 2017 10:40

The corporate finance giant says "very few" clients are affected. BBC News - Technology

Russian-Linked Election Ads Highlight Scope Of Facebook's Power
  • Tue, 26 Sep 2017 09:54

Facebook is facing pressure after news that Russia was behind a vast number of ads that tried to take votes away from Hillary Clinton in last year's p...

French woman allowed to daydream again thanks to guide dog
  • Tue, 26 Sep 2017 08:49

When you're blind, having a guide dog can change your life. But less than 2 percent of France's 1.7 million blind and visually impaired people benefit...

Tech stocks sell-off deepens fears of shift away from sector
  • Tue, 26 Sep 2017 07:55

SAN FRANCISCO (Reuters) - Technology stocks including Facebook , Microsoft and Alphabet dropped sharply on Monday, increasing worries that the top-p...

Trump directs Ed secretary to prioritize computer science
  • Tue, 26 Sep 2017 06:49

President Donald Trump wants to expand access to computer science education, directs creation of $ 200M grant program for K-12 schools. ABC News: Te...

Paragon exFAT NTFS USB Android review: Read native Mac disks from Android TVs and devices
  • Tue, 26 Sep 2017 05:40

The inability to read Apple’s natively formatted HFS+ disks on an Android device is a rather petty issue, even as a first-world problem. But if you...


News Categories