RomCom Exploits Zero-Day Firefox and Windows Flaws in Sophisticated Cyberattacks
Posted: Sun Jan 12, 2025 4:36 pm
The Russia-aligned threat actor known as RomCom has been linked to the zero-day exploitation of two security flaws, one in Mozilla Firefox and the other in Microsoft Windows, as part of attacks designed to deliver the eponymous backdoor on victim systems.
"In a successful attack, if a victim browses a web page containing the exploit, an adversary can run arbitrary code – without any user interaction required (zero click) – which in this case led to the installation of RomCom's backdoor on the victim's computer," ESET said in a report shared with The Hacker News.
https://thehackernews.com/2024/11/romco ... x-and.html
"In a successful attack, if a victim browses a web page containing the exploit, an adversary can run arbitrary code – without any user interaction required (zero click) – which in this case led to the installation of RomCom's backdoor on the victim's computer," ESET said in a report shared with The Hacker News.
https://thehackernews.com/2024/11/romco ... x-and.html