Security firm Trustwave said that researchers have observed attacks using zero-day vulnerability to install malware that attempts to disable the user's security products and redirects banking sites to a malicious IP address.
A zero-day vulnerability refers to a flaw in the security of a software that exploits a previously unknown vulnerability in a computer application.
According to News24, Trustwave researchers discovered that hackers are exploiting the vulnerability in Internet Explorer 8 by using it to install malware on infected machines.
The report said that so far the attacks have been limited to computers that are set to run in Korean and Japanese.
Trustwave director of Security Research Ziv Mador said that users' banking information was the target of the attacks in order to steal credentials to popular online games.
The company said that the flaw has been reported to Microsoft as the vulnerability extends to Windows XP and 7 platforms.
Users are recommended to download the latest Microsoft patch by enabling Windows Updates, the report added.
--ANI (Posted on 10-10-2013)