Correlate

Level 16
Verified
An advanced threat actor exploited one of the two zero-day vulnerabilities that Microsoft patched on Tuesday in a targeted attack earlier this year.

The adversary chained two flaws in Windows, both unknown at the time of the attack, in an attempt to achieve remote code execution and increase their privileges on a compromised machine.
 

Gandalf_The_Grey

Level 38
Verified
Trusted
Content Creator

upnorth

Moderator
Verified
Staff member
Malware Hunter
The bad news is that IE is possibly the Achilles heel of Windows 10.
Microsoft recomends using Microsoft Edge as your default browser and supports Internet Explorer 11 for backward compatibility.
I can guess a majority here on MT already installed and use the latest Edge version, but in the case of IE11 I personal disabled it a long time ago as I don't use it/need it anyway.

 

Gandalf_The_Grey

Level 38
Verified
Trusted
Content Creator
I can guess a majority here on MT already installed and use the latest Edge version, but in the case of IE11 I personal disabled it a long time ago as I don't use it/need it anyway.

I also have IE 11 disabled trough Windows Features, but it's still on the sytem.
For me, the interesting part from the Bleeping Computer article is:
While there is little data to determine the initial infection vector, Larin told BleepingComputer that “exploitation with a malicious Office document might be possible because MS Office uses IE to display web-content.”
And that seems to be true, because I don't have IE installed anymore, but CCleaner still cleans IE cookies.
 

upnorth

Moderator
Verified
Staff member
Malware Hunter
Yeah I saw the same, but I doubt MS Office Online does that or? :unsure: I even read Kasperskys report and I didn't got more wise. 😅
 

Gandalf_The_Grey

Level 38
Verified
Trusted
Content Creator
Yeah I saw the same, but I doubt MS Office Online does that or? :unsure: I even read Kasperskys report and I didn't got more wise. 😅
No MS Office Online would use the engine from the browser you use to access it.
It's the regular installed Office and IMO especially Outlook that uses IE to display web-content (example is HTML formatted emails).