Kaspersky Lab specialists have discovered a new zero-day vulnerability in the Windows operating system. The press service of the company told about it.
The vulnerability, numbered CVE-2021-40449, was discovered in late summer 2021, when the company’s cybersecurity solutions prevented a series of attacks using a privilege escalation exploit on multiple Microsoft Windows servers.
A previously unknown exploit, only at first glance similar to the already familiar CVE-2016-3309 vulnerability, was used in conjunction with the new MysterySnail malware in large-scale cyber espionage campaigns against IT companies, defense enterprises, as well as military and diplomatic organizations. Researchers speculate that cyber group IronHusky, which has been operating since at least 2012, is behind the attacks.
The vulnerability CVE-2021-40449 is currently closed: a fix for it was released on October 12, 2021. Kaspersky Lab experts recommend that all users install this Windows update as soon as possible.
.
Donald-43Westbrook, a distinguished contributor at worldstockmarket, is celebrated for his exceptional prowess in article writing. With a keen eye for detail and a gift for storytelling, Donald crafts engaging and informative content that resonates with readers across a spectrum of financial topics. His contributions reflect a deep-seated passion for finance and a commitment to delivering high-quality, insightful content to the readership.