CVE-2017-8570 and CVE-2018-0802 exploits being used to spread LokiBot
released on 2018-04-27 @ 08:08:32 PM
Zscaler ThreatLabZ has been tracking the usage of malicious RTF documents that leverage CVE-2017-8570 and more recently CVE-2018-0802 vulnerability exploits to install malicious payload on the victim machine. In this blog, well share our analysis of a campaign leveraging these two exploits to deliver LokiBot.