Ukraine to face a new powerful cyber attack

Ukrainian users of different versions of Microsoft Windows software will face the new strongest hacker attack of the cyber group PowerPool.

Company ESET from Slovakia, which develops anti-virus and security software, warned that hacker group will probably use some vulnerability not closed by the manufacturer for the first time.

Representatives of the company said hackers are going to increase privileges (Local Privilege Escalation), through which the dangerous code will be executed with the maximum permissible rights.

It should be noted that the information about the 0-day vulnerability was newly disclosed on August 27, 2018. The security updates were not available at the time of publication.

At the same time, just two days after the publication, hackers changed the system update code and began to attack users.

Experts explained that at the first stage the hackers will send dangerous spam e-mail with a temporary access to computers. Further, if hackers are interested in the computer, they will install a backdoor that will give constant access to it.
At the second stage, hacker group PowerPool will use the 0-day vulnerability to increase privileges. It's interesting to note that hackers will attack a limited number of users.


from E Hacking News - Latest Hacker News and IT Security News https://ift.tt/2R9k3M7