An Internet Explorer 11 zero-day vulnerability used against security researchers today received a micropatch that prevents exploitation. North Korean state-sponsored hacking group known as Lazarus was conducting social engineering attacks on security researchers. South Korean cybersecurity firm ENKI disclosed that Lazarus targeted their security researchers with M HTML files in the same social engineering campaign. Microsoft has not publicly acknowledged the vulnerability or assigned a CVE identifier to the vulnerability. Until Microsoft comes up with an official patch, users can register an account at 0patch and install the agent to get access to the patch.
Source: https://www.bleepingcomputer.com/news/security/internet-explorer-11-zero-day-vulnerability-gets-unofficial-micropatch/