The BOLO (be on the lookout) says that the attack started on a breached website in the U.S., and confirms the issue is a Zero-Day vulnerability. Microsoft says it is aware of targeted attacks against Internet Explorer, currently targeting customers using Internet Explorer 10. “We are investigating and we will take appropriate actions to help protect customers,” the company said in a statement to Salted Hash. FireEye: “Upon successful exploitation, this zero-day attack will download a XOR encoded payload from a remote server””]