October 15, 2014 by

Zero-Day Used to Hack the NATO, Ukraine, and Others

A Russian group of hackers is reported to have used a zero-day vulnerability within Windows operating system to spy on such targets as NATO, the Ukrainian and Polish governments, the European Union, and other targets. The vulnerability was named the Sandworm (CVE-2014-4114) by the authors of the report, iSIGHT Partners, a cybersecurity firm. The name comes from the discovered bits of Russian references within the code from the DUNE.

The vulnerability affects all of the supported versions of Windows. Windows XP does not seem to be affected.

This includes (along with all versions of each):

  • Windows Vista
  • Windows Server 2008
  • Windows Server 2012
  • Windows 7
  • Windows 8/8.1
  • Windows RT

The Sandworm allowed the hackers:

  • A remote execution of an arbitrary code.
  • To reference to external files (such as INF) from untrusted sources
  • Execution of the downloaded files
  • Steal information

The vulnerability was around for years and it’s not clear how many computers are affected. Microsoft already released a fix- to make sure you’re on the safe side, patch your computer immediately.


About the author

Image of Author

LIFARS is the global leader in Digital Forensics and Cyber Resiliency Services. Our experience spans two decades working on high profile events, often in concert with Law Enforcement Agencies around the world. Our proprietary methodology derives directly and indirectly from our experience working with and for U.S. Intelligence Agencies, Interpol, Europol, and NATO. We are solely dedicated to Cyber Resiliency and thus pay close attention to all aspects of our clients’ engagements experience while providing a strategic and integrated array of services to minimum risk and disruption while protecting your brand.

Related articles

Microsoft Sees Cryptocurrency Miners as an ‘Increasing Threat’

Software giant Microsoft has labelled malicious cryptocurrency miners as an increasing threat as...

Read more arrow_forward

Cyberattacks ‘Could Lead to Inadvertent Missile Launches’, Says Think Tank

A number of nuclear weapons systems in the United States, Britain and other countries are at risk...

Read more arrow_forward

Meltdown, Spectre Bugs Bring More Grief to Microsoft, AMD Users

Microsoft has temporarily paused issuing patches to the Metldown and Spectre vulnerabilities for AMD...

Read more arrow_forward