Snake is a fairly complex malware framework used for targeted attacks, or Cyber-espionage, and it’s been found on the Mac running on MacOS X. Snake has been linked with a Russian cybere-spionage group.
Microsoft’s security updates for April 2017 address more than 40 critical, important and moderate severity vulnerabilities, including three zero-day flaws that have been exploited in attacks.
What’s worse than an actively exploited zero-day vulnerability for which there is no patch? Not much – but we have that situation now, where IIS6 from Microsoft is actively being exploited, and because it is ‘end-of-life’ – there will never be a patch for this expoit!
Worse still – this is an exploit that seems to have been exploited since July or August 2016.