Hackers target APAC Windows vulnerability

Close to 70 per cent of Windows-based PCs are vulnerable to this attack: Websense

Websense estimates that close to 70 per cent of Windows-based PCs are vulnerable to attack, by a zero-day exploit.

The vulnerability allows attackers to execute code on a machine when the user visits a malicious website.

This can happen when the user is tricked into clicking a link in an email or via compromised legitimate websites.

Websense senior security research manager Carl Leonard said the discovery suggests that the hackers were using this exploit to specifically target companies in APAC.

“Websense estimates that close to 70 percent of Windows-based PCs are vulnerable to this exploit,” he said. “Given the huge attack surface, the actors behind these campaigns are racing to target companies before a patch becomes available.

“We anticipate that as more information of this zero day comes to light, the exploit will be weaponised and packaged into exploit kits rapidly, greatly increasing the number of attackers with access to this exploit.

But Leonard said all was not lost as they generally fell into an attack pattern.

“When you take the approach of looking at the entire attack chain for suspicious behaviour, rather than waiting and hoping to catch something on the last step of the process, you have many more opportunities to spot and disrupt an attack - even if it's malware you've never seen before," he said.

“Websense strongly encourages IT administrators to install the Microsoft FixIt patch to stop the vulnerability while waiting for a formal patch from Microsoft.”

More about: APAC, Microsoft, Websense
References show all
Comments are now closed.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: hackers, Windows, zero-day vulnerability, websense
ARN Directory | Distributors relevant to this article
Avnet Technology Solutions , Bluechip Infotech , Com1 International , Dicker Data , Express Data , ICT Distribution , Impact Systems Technology , Ingram Micro Australia , Leader Computers , M Tech , Multimedia Technology , NewLease , Synnex Australia , Topstar Computer International , Wholesale IT , XiT Distribution
Get exclusive access to ARN's news, research and invitation only events.
ARN Distributor Directory
ARN Vendor Directory
Microsites

iAsset is a channel management ecosystem that automates all major aspects of the entire sales,marketing and service process, including data tracking, integrated learning, knowledge management and product lifecycle management.

 

Latest News

Apr 17
Splunk exec defects to tech disruptor Elasticsearch
Apr 17
JCurve acquisition to boost telco play following $A2.5m capital raising
Apr 17
Vodafone tackles FIFA World Cup with $5 roaming in Brazil
Apr 17
Kim Dotcom says he's set to get assets back
More News
24 Apr
The China Healthcare ICT Conference 2014
05 May
CeBIT Australia 2014
06 May
Oracle Day 2014 - Across 2 Cities
06 May
Oracle Day 2014 - Across 2 Cities
View all events