Threat actors have been exploiting Microsoft's retired Internet Explorer browser as part of a malware attack campaign that has been underway for more than a year, according to SC Media.
Intrusions, which could be targeted at Windows 11 devices without configuration modifications, involve the distribution of a PDF-spoofing .URL file, which when executed opens in Internet Explorer before running a script that would enable malware
installation, a report from Check Point Research found. Organizations have been urged by Check Point researchers to remediate the issue by implementing updates issued by Microsoft as part of this month's Patch Tuesday, which hinders automated exploitation of Internet Explorer.
"For concerned Windows users, we recommend being especially vigilant about .url files sent from untrusted sources. As we've discussed, this type of attack requires a couple of warnings (user interactions) to succeed," said Check Point researcher Haifei Li.