Just one day after hackers showed how to exploit a number of flaws in the ActiveX software used by Internet Explorer, Symantec has spotted online criminals using one of the attacks. The attack, which was first observed in the last few hours, is not widespread at present. Symantec Security Response Director Oliver Friedrichs said today that the company had identified just three Web sites that were hosting the attack code, all of which seem to be linked to the same criminals.
But he believes that more attacks are inevitable as the bad guys work the code into their malicious toolkits of software. “Given the fact that the proof of concept is available and works, it’s not exactly rocket science for someone to plug this into [a toolkit],” he said. “That’s likely to happen in short order.”
Security researchers Elazar Broad and Krystian Kloskowski have disclosed a slew of ActiveX bugs affecting MySpace and Facebook over the past few days, but the attack reported by Symantec takes advantage of a flaw in an ActiveX control used by Yahoo’s Music Jukebox. After the attackers are able to install software on the victim’s machine, they then begin installing a number of malicious files on the victim’s computer, Symantec said.
Symantec, Yahoo!, Jukebox, ActiveX, Internet Explorer, IE, Exploit, Vulnerability