< IMG SRC = "/Uploads/Blogs/39/29/24/IB-FR43MT6ML_0DF4A499.jpg" Alt = "Microsoft refused to close the zero vulnerability revealed by specialists"/> ~ ~ ~ ~ Trend Micro researchers have found a previously unknown vulnerability in Windows, which has been used for cyberbushing and data theft has allegedly since 2017. < p > experts believe that this vulnerability of zero used not only hackers but also & laquo; state groups & raquo;.
< p > Despite the seriousness of the threat, & nbsp; Microsoft refuses to produce a patch, claiming that vulnerability is not a significant risk. However, Trend Micro experts believe that Microsoft underestimates the scale of the problem. Vulnerability known as ZDI-CAN-25373 allows the attackers to perform arbitrary code on the device under the control of Windows.
< P > to known cybercrumbs that participated in attacks using this vulnerability include Evil Corp, APT43 (KimsUKY), Bitter, APT37, Mustang Panda, Sidewinder, Redhoter, Redhoter, Redhotel. Attacks are mainly aimed at organizing in North and South America, Europe, East Asia and Australia, with about 70% aimed at espionage and data theft.
< P > Malcarians use various harmful programs, including Ursnif, GH0st Rat, TrickBot, as well as platform & laquo; malicious software as a service & raquo;, which complicates this threat.
As indicated in Trend Micro, the evil zdi-Kan-25373 occurred as a result of an error displaying critical information in the Windows user interface. ~ ~ ~ ~ > 62 >