watering hole | DataProtectionCenter.com

Watering hole attacks continue (with a twist)

15

Jan

2013

Through a collaboration with Eric Romang (@eromang), independent security researcher we can confirm that the watering hole campaigns are still ongoing and are targeting multiple targets, including as an example a major Hong Kong political party website.This website is actually using the new version of the original Internet Explorer (CVE-2012-4792) vulnerability attack, but right now […]

Category General Written by Avast! blog 0 Comments

Elderwood Project Behind Latest Internet Explorer Zero-Day Vulnerability

04

Jan

2013

In our recent blogs about the latest Internet Explorer zero-day vulnerability, we explained what watering hole attacks are and referenced our research paper about the Elderwood Project. The paper highlights a string of watering hole attacks by the Elderwood group. After revisiting those previous attacks, we have been able to confirm that this latest Internet […]

Category General Written by Symantec Security Response Blog 0 Comments

Internet Explorer Zero-Day Used in Watering Hole Attack: Q&A

01

Jan

2013

In a recent blog, Symantec reported on a new Internet Explorer zero-day being actively exploited in the wild. Microsoft has since released Security Advisory 2794220 which confirms the Microsoft Internet Explorer ‘CDwnBindInfo’ Use-After-Free Remote Code Execution Vulnerability (CVE-2012-4792) is a zero-day vulnerability which affects Internet Explorer 8, Internet Explorer 7, and Internet Explorer 6.The following […]

Category General Written by Symantec Security Response Blog 0 Comments

The Latest in IT Security

Posts Tagged ‘watering hole’

Watering hole attacks continue (with a twist)

Elderwood Project Behind Latest Internet Explorer Zero-Day Vulnerability

Internet Explorer Zero-Day Used in Watering Hole Attack: Q&A

Categories

Featured

Archives

Latest Comments

About Us

Contact Us