Cloud Atlas Exploits Six-Year-Old Flaw to Target Russian Companies

Threat Level – Red | Vulnerability Report
Download PDF

The threat actor Cloud Atlas has been identified in spear-phishing attacks targeting Russian enterprises. The modus operandi involves a phishing message in the initial stage, containing a lure document that exploits CVE-2017-11882, a memory corruption vulnerability in Microsoft Office’s Equation Editor. This six-year-old vulnerability is leveraged to initiate the execution of malicious payloads.

Threat Level – Red | Attack Report

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox