By CagedTech in Malware

Threat Scorecard

Threat Level: 80 % (High)
Infected Computers: 10
First Seen: October 31, 2014
Last Seen: July 25, 2022
OS(es) Affected: Windows

Malware researchers have exposed a zero-day exploit based on a vulnerability that may be present on all versions of the Windows operating system, the CVE-2014-4114 vulnerability. Although the mentioned vulnerability has been patched, a threat named Sandworm has been able to infect numerous computers belonging to Energy and Telecommunications companies, NATO, European Union, etc. The most common delivery method used by Sandworm perpetrators is by including the threat in corrupted links on phishing attacks that, if clicked, will install Sandworm on the aimed computer. After Sandworm installation, the hackers will take control of the affected machine and may install other threats and collect any kind of information they are looking for. To avoid been infected by Sandworm, computer users should update their programs, especially the security-related ones, install any Microsoft released patch and be very careful when opening e-mails from unknown sources.


Most Viewed