Malicious activity detected in mid-December 2009 targeted at least 20 organizations representing multiple industries
including chemical, finance, information technology, and media.
Investigation into this activity revealed that third parties routinely accessed
the personal email accounts of dozens of users based in the United States, China, and Europe.Further analysis revealed these users were victims of previous phishing scams through whichthreat actors successfully gained access to their email accounts.
Systems Affected
Microsoft Internet Explorer 6 Service Pack 1 on Microsoft Windows 2000 Service Pack 4
Microsoft Internet Explorer 6, 7, and 8 on supported editions of Windows XP, Windows Server 2003,Windows Vista, Windows 2008, Windows 7, and Windows Server 2008 R2
