Zero-Day In Microsoft's VBScript Engine Used By Darkhotel APT August 18, 2018 https://www.bleepingcomputer.com/ne...osofts-vbscript-engine-used-by-darkhotel-apt/
Internet Explorer scripting engine becomes North Korean APT's favorite target in 2018 November 12, 2018 https://www.zdnet.com/article/inter...es-north-korean-apts-favorite-target-in-2018/
"We may never know why DarkHotel is expending so many resources into targeting Internet Explorer" Apparently, because South Korean diplomats didn't switch to Chrome yet. LOL
Internet Explorer scripting engine becomes North Korean APT's favorite target in 2018 Hum ……… Sometimes you read an article that is 75% irrelevant. Let's analyze. As far as the IE browser vulnerabilities the mentioned exploits were targeting, they have been patched for some time. Next up is the use of the VBS script engine which is a moot point as of Win 10 1803. I also assume that by now the same has been done in older Win OS versions: That leaves the only exploit applicable as the following which has nothing to do with direct IE11 browser use: I also suspect the above applies to all Win 10 versions since although IE11 can supposedly be disabled in these, what really is in fact only disabled is direct execution of IE11. Obviously if you open all documents in Word Protected view mode, your covered. Likewise if Word File Block settings include web pages, you're covered.