Last week, Microsoft published some details regarding a new zero-day vulnerability affecting Internet Explorer that was being used in targeted attacks against Japanese targets as Fireeye published last week.
Alien Vault have identified a version of the exploit hosted on a subdomain of Taiwan’s Government e-Procurement System. When users visit the main webpage a Javascript code will redirect them to the exploit page if it is the first time the visit the page.
If the exploitation is successful the exploit downloads a payload from the IP address 210.177.74.45
More can be found at: http://www.alienvault.com/open-threat-exchange/blog/latest-internet-explorer-0day-used-against-taiwan-users?utm_medium=Social&utm_source=Twitter#sthash.7ka7Q625.dpuf
