Void Banshee - Geek Feed

CISA warns of Windows flaw used in infostealer malware attacks

September 17, 2024September 17, 2024 geekfeed0Tagged CISA, Information Stealer, Information-stealing malware, internet explorer, usa, Void Banshee, windows, Zero-Day

CISA has ordered U.S. federal agencies to secure their systems against a recently patched Windows MSHTML spoofing zero-day bug exploited by the Void Banshee APT hacking group. The vulnerability (CVE-2024-43461) was disclosed during this month’s Patch Tuesday, and Microsoft initially classified it as not exploited in attacks. However, Microsoft updated the advisory on Friday to confirm that it […]

3 mins read

Windows vulnerability abused braille “spaces” in zero-day attacks

September 16, 2024September 16, 2024 geekfeed0Tagged 0day, CVE-2024-43461, HTA, microsoft, Void Banshee, windows, Windows vulnerability, Zero-Day

A recently fixed “Windows MSHTML spoofing vulnerability” tracked under CVE-2024-43461 is now marked as previously exploited after it was used in attacks by the Void Banshee APT hacking group. When first disclosed as part of the September 2024 Patch Tuesday, Microsoft had not marked the vulnerability as previously exploited. However, on Friday, Microsoft updated the CVE-2024-43461 advisory to indicate it […]

4 mins read