"DarkMe Malware Exploits Microsoft Zero-Day Vulnerabilities"
Originally Published 1 year ago — by The Hacker News
A zero-day vulnerability in Microsoft Defender SmartScreen, exploited by an advanced persistent threat actor known as Water Hydra, has been used to target financial market traders with the DarkMe malware. The flaw, CVE-2024-21412, allows the bypassing of security checks, enabling the delivery of the DarkMe trojan through a cleverly crafted internet shortcut file distributed via forex trading forums. This campaign highlights the increasing trend of cybercrime groups exploiting zero-day vulnerabilities, with the potential for such exploits to be incorporated into sophisticated attacks by nation-state hacking groups.