Windows SmartScreen bug targeted by new Mispadu trojan variant

6 February 2024

Mexico has been subjected to attacks with a new variant of the Mispadu banking trojan that involved the exploitation of a high-severity Windows SmartScreen vulnerability patched by Microsoft in November, according to The Hacker News. Malicious ZIP archive files with internet shortcut files have been leveraged by threat actors to target the flaw, tracked as CVE-2023-36025, evade the warnings of SmartScreen, and later distribute Mispadu, which enables geographic and system configuration targeting before conducting data exfiltration activities, a report from Palo Alto Networks’ Unit 42 revealed.

Source: SC Magazine

Date:

6 February 2024

Categorie(s):

NEWS

Tag(s):

Microsoft, OS, SmartScreen, Vulnerability Management, Windows

20 Best Linux Password Managers in 202428 April 2024
Reliable Web App Pattern: Now Optimizes Azure Migration with Enhanced Infrastructure and Security28 April 2024
Okta Warns of Unprecedented Surge in Proxy-Driven Credential Stuffing Attacks28 April 2024
Good Security Is About Iteration, Not Perfection.28 April 2024
Week in review: Two Cisco ASA zero-days exploited, MITRE breach, GISEC Global 202428 April 2024