Skip to main content

Russian hackers exploit unusual Java zero-day to hit unnamed NATO country

posted onJuly 16, 2015
by l33tdawg
Credit:

Cyber-espionage group 'Pawn Storm' has been exploiting an unusual Java zero-day vulnerability to carry out drive-by-download attacks on a NATO country and US defence company, according to Trend Micro.

The anti-virus and threat intelligence vendor reported on Sunday that it had noticed Pawn Storm's return, after spotting a series of spear-phishing emails containing links to an exploit kit. This, researchers said, marked a slight change in tactic from the group's attacks against the White House and other NATO members in April, when the URLs sent in spear-phishing emails did not host the exploit kits.

On this occasion, the hacking group – which is believed to have close links to the Kremlin - leveraged a new and unpatched vulnerability on Oracle's Java, the first to be spotted in the wild since 2013.

Source

Tags

Security Hackers

You May Also Like

Recent News

Friday, November 29th

Tuesday, November 19th

Friday, November 8th

Friday, November 1st

Tuesday, July 9th

Wednesday, July 3rd

Friday, June 28th

Thursday, June 27th

Thursday, June 13th

Wednesday, June 12th

Tuesday, June 11th