Russian Cyber Group RomCom Exploits Critical Firefox and Windows Vulnerabilities
Forbes
|
Contributed by: Drex DeFord
Summary
A recent cyber attack linked to the Russian state-sponsored group RomCom has exploited two critical zero-day vulnerabilities in Mozilla Firefox and Windows operating systems, allowing attackers to install a backdoor without user interaction. Security researchers from ESET have reported that the attack leverages a use-after-free vulnerability in Firefox, paired with a privilege escalation flaw in Windows, enabling command execution and additional malware downloads. The attack typically initiates through a fraudulent website that directs victims to the malicious exploit server, threatening users primarily in Europe and North America, while RomCom continues to focus on espionage alongside its cybercrime activities.
