MS09-002 exploit in the wild
Email This Post
February 19th, 2009
The Internet Storm Center is reporting that several AV vendors have confirmed that the recently patched IE 7 vulnerability (MS-09-002 Uninitialized Memory Corruption) has been reverse engineered by the malware writers (so quickly!) and that we can expect them to be trying to infect your PC’s and get you to join in their zombie army any time now.
What does this have to do with spam? Spam is one way that they try to infect your PC so be on the lookout for simple, hard to block e-mail’s with a catchy subject line and a simple link to a website.
The CudaMail System has been seeing and blocking a rise in emails with simple links to malware sites, and even the occasional iframe. They’re definitely trying various ways to sneak malicious links into your inbox.
It bears repeating that if you don’t know where the e-mail came from or if you weren’t expecting it and can’t confirm that the supposed sender really sent it to you be very careful opening the website or better yet don’t open it at all.
MS09-002 exploit in the wild (via Sans)
http://isc.sans.org/diary.html?storyid=5884
- Shaun
Entry Filed under: Botnets, Bulletins, CudaMail, Tips & Tricks
Leave a Comment
Some HTML allowed:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>
Trackback this post | Subscribe to the comments via RSS Feed