Cloud Atlas Exploits Six-Year-Old Flaw to Target Russian Companies
Cloud Atlas Exploits Six-Year-Old Flaw to Target Russian Companies
Summary:
The threat actor Cloud Atlas has been identified in spear-phishing attacks targeting Russian enterprises. The modus operandi involves a phishing message in the initial stage, containing a lure document that exploits CVE-2017-11882, a memory corruption vulnerability in Microsoft Office’s Equation Editor. This six-year-old vulnerability is leveraged to initiate the execution of malicious payloads.
Threat Level – Red | Attack Report
For a detailed threat advisory, download the pdf file here
To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.