{"id":3109,"date":"2014-04-30T16:45:57","date_gmt":"2014-04-30T11:15:57","guid":{"rendered":"https:\/\/www.qadit.com\/blog\/?p=3109"},"modified":"2014-04-30T16:49:14","modified_gmt":"2014-04-30T11:19:14","slug":"clandestine-fox-eats-windows-xp","status":"publish","type":"post","link":"https:\/\/qadit.com\/blog\/clandestine-fox-eats-windows-xp\/","title":{"rendered":"&#8220;Clandestine Fox&#8221; eats Windows XP"},"content":{"rendered":"<p>A new Day Zero vulnerabilty in nearly all versions of IE has been discovered and announced publicly by FireEye, a security company.<br \/>\n<!--more--><br \/>\n<strong>What is a Day Zero Vulnerability?<\/strong><br \/>\nAlso called Zero Day or Zero Hour (not to be confused with size zero) is any vulnerability for which the developer has not yet released a patch\/fix.<br \/>\n&nbsp;<br \/>\n<strong>What is &#8220;Clandestine Fox&#8221;?<\/strong><br \/>\nThe hacking operation carried out that uses the particular vulnerability found by FireEye (CVE-2014-1776) to attack and takeover systems.<br \/>\n&nbsp;<br \/>\n<strong>Which versions of IE are affected?<\/strong><br \/>\nMicrosoft says its &#8220;Every supported version of IE&#8221; (read IE6 through IE11)<br \/>\nFireEye says that IE9 through IE11 are the most targeted.<br \/>\n&nbsp;<br \/>\n<strong>Has a patch been released yet?<\/strong><br \/>\nNo. Which is why we are calling it &#8220;Zero day&#8221; at the time of going to the press.<br \/>\n&nbsp;<br \/>\n<strong>Has anyone been attacked using this?<\/strong><br \/>\nMicrosoft said it is aware of  \u201climited, targeted attacks\u201d against the vulnerability (CVE-2014-1776) so far.<br \/>\n&nbsp;<br \/>\n<strong>I use IE. What should I do?<\/strong><br \/>\nDownload and install its Enhanced Mitigation Experience Toolkit (EMET) 4.1 (not any previous version), a free tool that can improve security on Windows. According to FireEye, the exploit also can be blocked by running Internet Explorer in \u201cEnhanced Protected Mode\u201d configuration and 64-bit process mode, which is available for IE10 and IE11 in the Internet Options settings. Ensure you have layered security in place.<br \/>\n&nbsp;<br \/>\n<strong>Ok. But I don&#8217;t see the fox eating XP.<\/strong><br \/>\nMicrosoft released the final set of patches for XP on April 8 2014. This means that you cannot patch this or any future vulnerability on XP. EMET does not protect XP either. So, if you have XP and use IE, you will always remain vulnerable.<br \/>\n&nbsp;<br \/>\n<strong>Oh! I use XP. What should I do?<\/strong><br \/>\nGet rid of it a.k.a. Upgrade to a newer supported version.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>A new Day Zero vulnerabilty in nearly all versions of IE has been discovered and announced publicly by FireEye, a security company.<\/p>\n","protected":false},"author":6,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false},"version":2}},"categories":[12,10,6],"tags":[],"class_list":["post-3109","post","type-post","status-publish","format-standard","hentry","category-itsec","category-microsoft","category-os-security"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p9AH7Q-O9","_links":{"self":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/posts\/3109","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/users\/6"}],"replies":[{"embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/comments?post=3109"}],"version-history":[{"count":0,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/posts\/3109\/revisions"}],"wp:attachment":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/media?parent=3109"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/categories?post=3109"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/tags?post=3109"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}