Russian Hackers Exploit Zero-Day Flaws in Firefox and Windows
TL;DR Summary
A Russian hacking group, identified as "RomCom," has exploited two zero-day vulnerabilities to target Firefox and Tor browser users on Windows PCs, primarily in Europe and North America. The attacks, which began in October, involve a malicious web page that installs a backdoor on victims' PCs without user interaction. The vulnerabilities, CVE-2024-9680 and CVE-2024-49039, have been patched by Mozilla, Tor, and Microsoft. However, users who haven't updated remain at risk. ESET links these attacks to RomCom's previous exploits.
Topics:technology#cyber-espionage#cybersecurity#firefox#russian-hackers#tor-browser#zero-day-vulnerabilities
- Russian Hackers Used Zero-Day Attack To Hit Firefox, Tor Users PCMag
- Microsoft Hacking Warning—450 Million Windows Users Must Now Act Forbes
- RomCom Exploits Zero-Day Firefox and Windows Flaws in Sophisticated Cyberattacks The Hacker News
- 'RomCom' APT Mounts Zero-Day, Zero-Click Browser Escapes in Firefox, Tor Dark Reading
- Russia-linked hackers exploited Firefox and Windows bugs in 'widespread' hacking campaign TechCrunch
Reading Insights
Total Reads
0
Unique Readers
0
Time Saved
2 min
vs 3 min read
Condensed
82%
438 → 78 words
Want the full story? Read the original article
Read on PCMag