Russian Cyber Group RomCom Exploits Critical Firefox and Windows Vulnerabilities

December 2, 2024Source: Forbes

Found this useful? Share it with your network

A recent cyber attack linked to the Russian state-sponsored group RomCom has exploited two critical zero-day vulnerabilities in Mozilla Firefox and Windows operating systems, allowing attackers to install a backdoor without user interaction. Security researchers from ESET have reported that the attack leverages a use-after-free vulnerability in Firefox, paired with a privilege escalation flaw in Windows, enabling command execution and additional malware downloads. The attack typically initiates through a fraudulent website that directs victims to the malicious exploit server, threatening users primarily in Europe and North America, while RomCom continues to focus on espionage alongside its cybercrime activities.

Read Full Article

Opens on Forbes

More News

AMA Asking For Stronger Safeguards on AI Mental Health Chatbots

April 29, 2026MobiHealthNews

Andrea Daugherty Appointed Chief Information and Digital Transformation Officer at ARMC

April 24, 2026arrowheadregional.org

Craig Richardville Appointed Chief Digital and Information Officer at UF Health

April 13, 2026ufhealth.org

Former AMA Exec Margaret Lozovatsky Named CDIO At Premier Health

April 10, 2026premierhealth.com

Signature Healthcare Diverts Ambulances Following Cybersecurity Incident

April 8, 2026SecurityWeek

More Than 100 Hospitals Suing HHS Over Alleged Underpayment

April 6, 2026MedCity News