Slashdot Mirror

← Back to Stories (view on slashdot.org)

IE Zero-Day Exploit Disappears On Reboot

Posted by samzenpus on from the poof-it's-gone dept.

nk497 writes "Criminals are taking advantage of unpatched holes in Internet Explorer to launch 'diskless' attacks on PCs visiting malicious sites. Security company FireEye uncovered the zero-day flaw on at least one breached U.S. site, describing the exploit as a 'classic drive-by download attack'. But FireEye also noted the malware doesn't write to disk and disappears on reboot — provided it hasn't already taken over your PC — making it trickier to detect, though easier to purge. '[This is] a technique not typically used by advanced persistent threat (APT) actors,' the company said. 'This technique will further complicate network defenders' ability to triage compromised systems, using traditional forensics methods.'"

3 of 103 comments (clear)

  1. Re:Advanced Persistant Threat (APT) by Anonymous Coward · · Score: 3, Funny

    Seems kinda silly for Debian to have a command to intentionally go out and get those things...

  2. Re:Advanced Persistant Threat (APT) by Anonymous Coward · · Score: 5, Funny

    Why? It's a very apt term.

  3. Yay! by jargonburn · · Score: 5, Funny

    Another Windows problem that can be fixed by having the user restart his or her computer!