Microsoft Fixes Windows Zero-day Used To Stealthily Deploy Magniber Ransomware

Microsoft has fixed the zero-day used in ransomware attacks to circumvent the Windows SmartScreen cloud-based anti-malware service. Hackers used malicious MSI files to trick SmartScreen into not showing Mark-of-the-Web (MotW) security alerts when opening files from the Internet. The vulnerability was abused mainly to deploy Magniber ransomware, although Magniber's typical campaigns target different South Korea and Taiwan, while this time, mostly Europe has been affected. Read more...