An unidentified threat actor has been exploiting a zero-day flaw in Internet Explorer browser to deliver a VBA-based remote access trojan. The malware-laced document claims to be a “Manifesto of the inhabitants of Crimea” calling on the citizens to oppose Russian President Vladimir Putin and “create a unified platform called ‘People’s Resistance” Malwarebytes spotted the suspicious Word file on July 21, 2021. The Internet Explorer flaw, tracked as CVE-2021-26411, is notable for the fact that it was abused by the North Korea-backed Lazarus Group.
Source: https://thehackernews.com/2021/07/hackers-exploit-microsoft-browser-bug.html