Attackers are launching new assaults on Windows, using an unpatched, critical zero-day bug in Visual Studio 2005. The exploits employ an unusual method of downloading known trojans onto their fake Websites. Microsoft has acknowledged that there are exploits in the wild of this vulnerability, but confusion remains over whether or not this is actually the first time it was exploited in a real attack. Microsoft will issue five Windows patches, some of which are critical, and one for XML Core Services, also rated as critical.”]
Source: https://www.darkreading.com/analytics/attackers-exploiting-new-windows-bug