zero-day-vulnerability

The chapter introduces the discovery and analysis of a powerful zero-day vulnerability in Microsoft PowerPoint by the private intelligence firm iSight Partners in 2014, just before the outbreak of Ukraine's cyberwar. The zero day allowed hackers to execute arbitrary code on victim machines, representing a significant security threat and research milestone. The chapter also traces the origins of the malware payload, BlackEnergy, linking it to Russian cyber operations targeting Ukraine, and outlines its evolution from a simple DDoS tool to a more sophisticated hacking instrument.