Home > Cyber News > CVE-2020-0674: Internet Explorer Targeted By Purple Fox and Magnitude Exploit Kits
CYBER NEWS

CVE-2020-0674: Internet Explorer Targeted By Purple Fox and Magnitude Exploit Kits

by   |  Last Update:  |  0 Comments  

New exploits for Microsoft Software including the Windows operating system have been added to the Purple Fox and Magnitude Exploit Kits. These are some of the serious tools used by computer criminals in leveraging large-scale network attacks. The newly found issues have been identified in major components such as the Internet Explorer web browser and its associated libraries.




CVE-2020-0674 and Other Dangerous Exploits Used In New Purple Fox and Magnitude Exploits Kits

The Magnitude Exploit Kit has been updated with new functionality being able to infect Microsoft Explorer users. The last active campaign was detected in Asia, specifically targeting Hong Kong, South Korea and Taiwan with the newer update of the software. This vulnerability is being tracked in the CVE-2019-1367 advisory. This was a zero-day vulnerability detected in Internet Explorer. It has since then been addressed and a patch has been released by the company.

Related: [wplinkpreview url=”https://sensorstechforum.com/cve-2019-1367-zero-day/”] CVE-2019-1367: Zero-Day in Internet Explorer, Patch Now

The main method of spreading virus code that can impact the web browsers is the launching of malvertising attacks. This includes the use of the Purple Fox Exploit Kit which has been configured to exploit Microsoft Windows 10 with the CVE-2020-0674 threat. It takes advantage of a security issue found in the jscript.dll library, one of the core components which is used by the operating system. The abuse will lead to a leak making it possible to hijack information. A memory manipulation will follow which will lead to the loading of malware.

One of the important aspects of the Purple Fox exploit kit is the fact that the hackers behind it have created their own exploit kit instead using a ready-made solution. This is in comparison with hacking groups that have traditionally relied on malvertising using the RIG exploit kit.

Previous campaigns relied on the exploit kits to deliver ransomware. Language checks were made and the targets were chosen based on the results of the analysis. In newer versions the language identification has been removed as the targeted users were chosen based on their proposed geographical location.

Martin Beltov

Martin graduated with a degree in Publishing from Sofia University. As a cyber security enthusiast he enjoys writing about the latest threats and mechanisms of intrusion.

More Posts

Follow Me:
Twitter

Related posts:
  1. Magnitude Exploit Kit Used for Cerber Ransomware Hacker Attacks Cyber security researchers identified that the Magnitude exploit kit is...
  2. Magnitude EK Is Now Using CVE-2019-1367 to Drop Ransomware Exploit kits have been deployed in plenty of ransomware campaigns...
  3. .fox Files Virus – How to Remove It In this article, you will find more information about .fox...
  4. Exploit Kit Attacks Grow in 2015 Q3, Patch Management is Crucial The intensity of malicious attacks that have applied exploit kits...
  5. Adobe Patches 112 Vulnerabilities in Latest Patch Package (CVE-2018-5007) Adobe has released the latest patch package that addresses a...
  6. CVE-2019-1367: Zero-Day in Internet Explorer, Patch Now CVE-2019-1367 is a new zero-day vulnerability of the remote code...
  7. Disdain Exploit Kit Is the Newest Hacker Toy The Disdain Exploit Kit is a hacking utility that has...
  8. CVE-2015-2419 Leveraged in Latest Sundown Exploit Kit Attacks Sundown exploit kit was detected in active malvertising campaigns last...

Leave a Comment

Your email address will not be published. Required fields are marked *

This website uses cookies to improve user experience. By using our website you consent to all cookies in accordance with our Privacy Policy.
I Agree