Taiwanese gang continues Word attacks

By

A Taiwanese criminal gang continues to launch attacks as Microsoft Word becomes the most common exploit vector, latest figures by MessageLabs show.

Taiwanese gang continues Word attacks
The study found that Microsoft Word has become an increasingly attractive target for hackers. Such attacks soared from just four attacks in March to 66 attacks going to 273 recipients in April.

According to Alex Shipp, senior anti-virus technologist at MessageLabs, using Word documents is a powerful way to launch these attacks, because they are a popular tool, used by a huge number of people in an uncomplicated format.

The research also reveals that the email security company intercepted 595 messages in 249 separate targeted attacks aimed at 192 different organisations. Of these, 180 were one-on-one targeted attacks.

These figures represent a drop compared to March largely due to a decrease in attacks by the Taiwanese gang, MessageLabs claim.

PowerPoint attacks also slumped in April; however the same Asian ring made assaults using the CVE-2006-0022 exploit. Furthermore, an additional attack using the same PowerPoint exploit, but originating from an IP address in China hints that another cyber gang is in operation, according to Shipp.

“This month we saw a significant surge in documents using the CVE-2006-2492 exploit,” he said. “On first sight, it appears that more than one hacker ring is using this Microsoft Word exploit, and so an exploit generator kit might exist, although this has not yet been found.”
Got a news tip for our journalists? Share it with us anonymously here.
Tags:
continuesexploitsgangreportsecuritytaiwanese

Sponsored Whitepapers

See everything. Do more.
See everything. Do more.
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Diamond IT Delivers GRC Transformation with Microsoft Purview
Diamond IT Delivers GRC Transformation with Microsoft Purview
Linktech Powers Energy Trader’s Essential Eight Compliance in Just Eight Weeks
Linktech Powers Energy Trader’s Essential Eight Compliance in Just Eight Weeks
Byte Delivers Future-Ready IT: Transforming Endpoint Security and Productivity with a Cloud-First Strategy
Byte Delivers Future-Ready IT: Transforming Endpoint Security and Productivity with a Cloud-First Strategy

Events

Most Read Articles

India's alarm over Chinese spying rocks CCTV makers

India's alarm over Chinese spying rocks CCTV makers
Woolworths' CSO is Optus-bound

Woolworths' CSO is Optus-bound
Hackers abuse modified Salesforce app to steal data, extort companies

Hackers abuse modified Salesforce app to steal data, extort companies
Cyber companies hope to untangle weird hacker codenames

Cyber companies hope to untangle weird hacker codenames
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?