Palo Alto Networks

DarkHotel

Traps Prevents In-The-Wild VBScript Zero-Day Exploit in Internet Explorer

On August 15, Trend Micro published a blog post detailing a high-risk vulnerability in the VBScript Engine of Microsoft Internet Explorer being exploited in-the-wild (CVE-2018-8373). This vulnerability still affects endpoints running the latest versions of Internet Explorer and Windows which do not have the relevant patches applied.

The exploit was served on a malicious web host: hxxp://windows-updater[.]net/realmuto/wood.php?who=1?????? which was linked to the DarkHotel APT campa...

Unit 42

Sep 07, 2018

By Tomer Harpaz and Maor Dokhanian

Palo Alto Networks

Products and Services

Partners

Events, News of the Week

Palo Alto Networks News of the Week – August 13, 2016

Looking to catch up on the top Palo Alto Networks news from the past week? We’ve rounded it up here for you.

Aug 13, 2016

By Anna Lough

Threat Prevention, Unit 42

Fresh Baked HOMEKit-made Cookles – With a DarkHotel Overlap

Threat actors tend to reuse certain tools, a trend we observed during recent Unit 42 research published on MNKit. In this post, we will discuss a fresh toolkit, which on the surfac...

Aug 12, 2016

By Bryan Lee and Robert Falcone