Yesterday, FireEye documented a Java zero-day vulnerability (CVE-2012-4681) in the wild that is thought to have been used initially in targeted attacks. Symantec is aware that attackers have been using this zero-day vulnerability for at least five days, since August 22. We have located two compromised websites serving up the malware: ok.XXXX.net/meeting/applet.jar 62.152.104.XXX/public/meeting/applet.jar One sample […]
Latest Comments