Security researchers have uncovered a complex cyberespionage campaign leveraging a Google Chrome zero-day vulnerability (CVE-2025-2783) attributed to the advanced persistent threat (APT) group Team46, also known as TaxOff.
The group’s multi-stage attacks combine sandbox escapes, PowerShell-based payload delivery, and layered encryption techniques to deploy the Trinper backdoor and Cobalt Strike beacon.
https://cyberpress.org/google-chrome-ze ... ability-2/