Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: G+ Digg Delicious Reddit Facebook Twitter StumbleUpon

[-]
Tags
windows new vulnerability kernel microsoft uncovers kaspersky exploited os lab

Kaspersky Lab uncovers new exploited vulnerability in Microsoft Windows OS kernel
#1
Quote:Kaspersky Lab technologies have automatically detected a new exploited vulnerability in the Microsoft Windows OS kernel, the third consecutive zero-day exploit to be discovered in three months.

The latest exploited vulnerability (CVE-2018-8611) was found in malware targeting a small number of victims in the Middle East and Asia.

Because the vulnerability exists in the kernel mode module of the operating system, the exploit is particularly dangerous and can be used to bypass built-in exploit mitigation mechanisms in modern web browsers, including Chrome and Edge. The vulnerability has been reported to Microsoft, which has released a patch.

Zero-day vulnerabilities are previously unknown, and therefore unpatched, software bugs that attackers can exploit to gain access to victim systems and devices. They are immensely valuable to threat actors, and difficult to detect.

All three exploits were detected by Kaspersky Lab’s Automatic Exploit Prevention technology, embedded in most of the company’s products. Like the previous two exploited vulnerabilities (CVE-2018-8589 and CVE-2018-8453), patched by Microsoft in October and November respectively, the latest exploit was found used in-the-wild targeting victims in the Middle East and Africa. The exploit for CVE-2018-8589 was called “Alice” by the malware writers, who also referred to the latest exploit as “Jasmine”. Kaspersky Lab researchers believe that the new vulnerability has been exploited by multiple threat actors, including a new advanced persistent threat (APT) called Sandcat.

https://www.arabianindustry.com/technolo...l-6020495/
Reply
#2
Once again it was proved that Kaspersky is a great product. 
Thumb
Reply


Possibly Related Threads...
Thread Author Replies Views Last Post
  Microsoft warns of major WannaCry-like Windows security exploit, releases XP patches tarekma7 0 111 05-14-2019 , 10:35 PM
Last Post: tarekma7
  DoS Vulnerabilities Found in Linux Kernel, Unpatched mrtrout 0 165 11-26-2018 , 04:15 AM
Last Post: mrtrout
  Microsoft extends thanks to Qihoo 360 for discovering processor vulnerability mrtrout 0 247 08-20-2018 , 07:19 PM
Last Post: mrtrout
  Hackers Combine Microsoft, Adobe Flaws in Devastating Windows Exploit mrtrout 0 296 05-16-2018 , 09:52 PM
Last Post: mrtrout
  Brazil Says Windows 10 Collects User Data Without Consent, Sues Microsoft mrtrout 0 302 04-26-2018 , 06:30 PM
Last Post: mrtrout

Forum Jump:


Users browsing this thread: 1 Guest(s)