Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: What is the current Vulnerability targeted by Magnitude Exploit? SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
What is the current Vulnerability targeted by Magnitude Exploit?
I came across this blog post writing about magitude exploit still in the wild. However, the vulnerability targeted by the exploit is really old. (MS13-009), is there a new vulnerability that this Exploit Kit leverage on?


https://threatpost.com/malvertising-leads-to-magnitude-exploit-kit-ransomware-infection/112894
Mostropi

27 Posts
Plenty is going on with exploit kits. MS13-009 is still valid for people who are still running IE 8, and exploits kits like Fiesta and Magnitude still throw exploits at these vulnerable hosts.

Most of what I've seen on the exploit kit side is targeting Flash.

As Kafeine noted earlier this month, Magnitude and other exploit kits are leveraging CVE-2014-0359 to exploit Flash 17. 0.0.134

malware.dontneedcoffee.com/2015/04/…

Not sure if there's anything new after MS13-009 specific to Microsoft browsers that exploit kits are turning to lately.
Brad

381 Posts
ISC Handler
Great, that helps a lot. Mostropi

27 Posts

Sign Up for Free or Log In to start participating in the conversation!