Phishers Launch Zero Day Exploits

Look out. Phishing attacks are starting to use zero day exploit code.

Two days after the Internet Explorer VML zero-day exploit code was released, phishers used it in their attacks, says Tod Beardsley, lead counter-fraud engineer at TippingPoint.

"That's unusual... Phishers don't usually take the bleeding-edge." But thanks to the increasingly popular WebAttacker hacker tool, which quickly added the VML bug to its repertoire once it was made public, attackers got the zero-day feature in their tool updates, he says. Dark Reading - Desktop Security - Phishers Launch Zero-Day Exploits - Security News Analysis
tag: ,

Linked by shanmuga Tuesday, 3rd October 2006 12:57AM