Internet Explorer/Microsoft Edge (Legacy) Memory Corruption Vulnerability [CVE-2021-26411, CVE-2021-27085]
In February, South Korean cybersecurity firm Enki disclosed that threat actors used an Internet Explorer zero-day vulnerability in attacks to install custom backdoors. This vulnerability allows attackers to run a file of their choice by getting you to view a hacked or malicious website in IE. Once the machine is exploited the attacker can take control of the affected system and steal confidential data.
Users who have Internet Explorer 11 or legacy Microsoft Edge installed on their machines.
Microsoft released a path that mitigates this vulnerability. While Microsoft lists this as both publicly known and underactive at the time of release, it is not as impactful as the Exchange bugs. We highly recommend applying these patches immediately for enterprises that uses old IE versions and HTM-based Microsoft Edge.
We also recommend that your security team review the following resources: