All the latest UK technology news, reviews and analysis


Microsoft Silverlight users at risk from Angler exploit kit

15 Nov 2013
Digital security padlock red image

Hackers are using the Angler exploit kit to automatically spread malware using a vulnerability in the Microsoft Silverlight service.

Malwarebytes senior security researcher Jerome Segura uncovered the attack targeting a vulnerability in Microsoft Silverlight versions 5 and below, warning that it has the potential to infect millions of PCs with malware.

"The flaw, which exists in versions prior to 5.1.20125.0, allows attackers to execute arbitrary code on the affected systems without any user interaction," he said.

"Upon landing on the exploit page, the Angler exploit kit will determine if Silverlight is installed and what version is running. If the conditions are right, a specially crafted library is triggered to exploit the Silverlight vulnerability. As with all exploit kits, leveraging vulnerabilities is just an intermediary step for the real motive: pushing malware onto the victim's machine."

Silverlight is a Microsoft service similar to Adobe Flash, which is used for rich internet applications. The Silverlight web plugin is used by several popular services, including Netflix, which currently boasts over 40 million global users. Segura said he expects hackers to add the Silverlight vulnerability to other exploit kits in the very near future.

"We can expect this CVE [common vulnerability and exposure system] to be integrated into other exploit kits soon, so it is important to make sure you patch all your machines now," he said. "If you don't need Silverlight – or other plugins – simply remove it altogether as that will help to reduce your surface of attack."

Exploit kits are hack tools traded on cyber black markets, which let users automatically mount cyber attacks on known vulnerabilities to spread a variety of malware. The kits have been used in several recent high-profile attacks.

Earlier this year hackers were spotted using the Blackhole exploit kit to mount a sophisticated phishing scam, sending out bogus malware-ridden emails claiming to be from high-profile companies such as Facebook and LinkedIn. Malwarebytes also discovered new ransomware being spread by the Neutrino exploit kit, targeting Java with a fake Skype file.

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Alastair Stevenson
About

Alastair has worked as a reporter covering security and mobile issues at V3 since March 2012. Before entering the field of journalism Alastair had worked in numerous industries as both a freelance copy writer and artist.

View Alastair's Google+ profile

More on Security
What do you think?
blog comments powered by Disqus
Poll

Microsoft Azure outage

Is cloud computing reliable enough for business yet?
10%
7%
21%
62%

Popular Threads

Powered by Disqus
HP Spectre X2 Pro tablet

HP Spectre X2 video demo

A two-in-one ultrabook and tablet hybrid that could eliminate the need for BYOD

Updating your subscription status Loading
Newsletters

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button
hpv3may

Getting started with virtualisation

Virtualisation can help you reduce costs, improve application availability, and simplify IT
management. However, getting started can be challenging

ibmv3may

Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

Software Engineer (Bangkok), Java, HTML, .Net, C++, Hadoop

Software Engineer (Relocate to Bangkok - FULL RELOCATION...

Software Engineer (Bangkok), Java, HTML, .Net, C++, Hadoop

Software Engineer (Relocate to Bangkok - FULL RELOCATION...

Software Engineer (Bangkok), Java, HTML, .Net, C++, Hadoop

Software Engineer (Relocate to Bangkok - FULL RELOCATION...

Software Engineer (Bangkok), Java, HTML, .Net, C++, Hadoop

Software Engineer (Relocate to Bangkok - FULL RELOCATION...
To send to more than one email address, simply separate each address with a comma.