Microsoft has described how hackers recently used rigged Office documents and targeted developers to exploit serious remote code execution vulnerability in the MSHTML aka Trident rendering engine of Internet Explorer.
In August, Microsoft security researchers noticed the hole was being regularly exploited on Windows PCs, and the CVE-2021-40444 bug was patched in this week’s Patch Tuesday release.
The attacks were not widespread and the vulnerability was employed as part of an early-stage attack that distributed modified Cobalt Strike Beacon loaders. Cobalt Strike is an application for penetration testing.
To Read More: ZDNet
For more such updates follow us on Google News ITsecuritywire News