Video
Did you hear about the latest security vulnerabilities uncovered by ESET researchers? It’s crucial information that you need to know!
26 Nov 2024
Hey there! ESET researchers have made a groundbreaking discovery of two new vulnerabilities affecting Mozilla products and Windows. These vulnerabilities are actively being exploited by RomCom, a group with ties to Russia. They are known for their targeted espionage operations and opportunistic campaigns against specific business sectors.
- CVE-2024-9680 is a use-after-free bug that allows attackers to execute code in the restricted context of browsers like Firefox, Thunderbird, and the Tor Browser. Mozilla has already patched this vulnerability.
- CVE‑2024‑49039 is a privilege escalation bug in Windows that enables code to run outside of Firefox’s sandbox. Microsoft has released a patch for this vulnerability as well.
When these two vulnerabilities are chained together, malicious actors can run code on a victim’s computer without any user interaction. This zero-click exploit leads to the installation of RomCom’s backdoor, which can execute commands and download additional modules onto the victim’s machine.
Want to learn more about how these vulnerabilities work and the exploits being used? Check out the video featuring ESET Chief Security Evangelist Tony Anscombe below, and don’t forget to read the full blogpost for all the details!
