Operation DeputyDog Targets Latest IE Zero Day
The recent Internet Explorer vulnerability (CVE-2013-3893) announced by Microsoft last week is being exploited as part of a targeted attack FireEye is referring to as “Operation DeputyDog”.
“Today, we released a Fix it workaround tool to address a new IE vulnerability that had been actively exploited in extremely limited, targeted attacks. This Fix it makes a minor modification to mshtml.dll when it is loaded in memory to address the vulnerability. This Fix it workaround tool is linked from Security Advisory 2887505 that describes this issue. The exploit we analyzed worked only on Windows XP or Windows 7 running Internet Explorer 8 or 9.” Microsoft said.
The attack is reported to be targeting organizations in Japan and throughout Asia and could be the same group who targeted Bit9 suspected as the Hidden Lynx APT group.