Silverlight MS16-006 seen in targeted attacks

silverlightOn January 12 Microsoft published MS16-006 a new version of Silverlight, Microsoft’s Flash competitor that is widely installed due to its initial use by Netflix. The new version addresses 2 critical vulnerabilities. On January 13, Kaspersky who had reported that bug to Microsoft, explained that the vulnerability was already being exploited in the wild. They had initially heard about it through the public disclosure of the HackingTeam e-mails and then started a code search in their monitored systems which revealed the exploit. As of January 13 we are setting the RTI to “Actively Attacked”, meaning their is active use of the exploit, but still limited to targeted attacks.

Leave a Reply

Your email address will not be published. Required fields are marked *