Security Alerts & News
by Tymoteusz A. Góral

History
#2215 CVE-2017-0199 Used as 0day to distribute FINSPY espionage malware and LATENTBOT malware
FireEye recently identified a vulnerability – CVE-2017-0199 – that allows a malicious actor to download and execute a Visual Basic script containing PowerShell commands when a user opens a Microsoft Office RTF document containing an embedded exploit. We worked with Microsoft and published the technical details of this vulnerability as soon as a patch was made available.

In this follow-up post, we discuss some of the campaigns we observed leveraging the CVE-2017-0199 zero-day in the days, weeks and months leading up to the patch being released.
Read more
#2219 OWASP Top 10 - 2017 RC1 - the ten most cirtical web application security risks (PDF)
#2218 Android O no! Android O causes problems for mobile ransomware developers
#2217 Five inmates built two PCs and hacked a prison from within
#2216 Microsoft kills off security bulletins after several stays
#2215 CVE-2017-0199 Used as 0day to distribute FINSPY espionage malware and LATENTBOT malware
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12