Windows Zero-day Exploit on Sale

d83e4-microsoft-patch-zero-dayTrustwave researchers have found an advertisement on an underground market for Russian speaking cyber criminals offering a Windows zero-day exploit. They noted that it is not possible to conclude if it is a valid exploit unless someone buys it and tries it out.

Helpnetsecurity noted that sales of zero days before now have been a business conducted in the shadows – always in private between the buyer and seller or possibly involving a middleman. A zero day being offered on a public forum shows that the business is coming out of the shadows into the open.

Trustwave researchers said it could be used to perform sandbox escapes, install rootkits, modify system properties that allow persistence on the system, install additional malicious software, etc. Users are advised to keep their softwares up-to-date, implement layered defense and use common sense to protect themselves against attacks.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s