[HackerNews] Hackers Using Microsoft MSHTML Flaw to Spy on Targeted PCs with Malware

A new Iranian threat actor has been discovered exploiting a now-addressed critical flaw in the Microsoft Windows MSHTML platform to target Farsi-speaking victims with a new PowerShell-based information stealer designed to harvest extensive details from infected machines.
“[T]he stealer is a PowerShell script, short with powerful collection capabilities — in only ~150 lines, it provides the

Source: Read More (The Hacker News)

You might be interested in …

[SANS ISC] Quick and dirty Python: nmap, (Mon, May 31st)

All posts, Sans-ISC

Continuing on from the “Quick and dirty Python: masscan” diary, which implemented a simple port scanner in Python using masscan to detect web instances on TCP ports 80 or 443.  Masscan is perfectly good as a blunt instrument to quickly find open TCP ports across large address spaces, but for fine details it is better to use a […]

Read More

[BleepingComputer] Microsoft August 2021 Patch Tuesday fixes 3 zero-days, 44 flaws

Today is Microsoft’s August 2021 Patch Tuesday, and with it comes fixes for three zero-day vulnerabilities and a total of 44 flaws, so please be nice to your Windows admins as they scramble to installed patches. […] Source: Read More (BleepingComputer)

Read More

[BleepingComputer] How to block Windows Plug-and-Play auto-installing insecure apps

A trick has been discovered that prevents your device from being taken over by vulnerable Windows applications when devices are plugged into your computer. […] Source: Read More (BleepingComputer)

Read More