Microsoft MSHTML Flaw the Silent Doorway for MerkSpy Malware

Threat Level – Red | Vulnerability Report
Download PDF


A newly discovered campaign is deploying MerkSpy, a sophisticated surveillance spyware engineered to clandestinely monitor and harvest data from a victim’s computer without their awareness or consent. Unidentified threat actors are leveraging the previously patched CVE-2021-40444 security vulnerability in Microsoft MSHTML to disseminate MerkSpy.

Threat Level – Red | Attack Report

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox