RomCom Exploits Zero-Day Firefox and Windows Flaws in Sophisticated Cyberattacks

The Russia-aligned threat actor known as RomCom has been linked to the zero-day exploitation of two security flaws, one in Mozilla Firefox and the other in Microsoft Windows, as part of attacks designed to deliver the eponymous backdoor on victim syste… Continue reading RomCom Exploits Zero-Day Firefox and Windows Flaws in Sophisticated Cyberattacks

Posted in Uncategorized

Analysis of Elpaco: a Mimic variant

Kaspersky experts describe an Elpaco ransomware sample, a Mimic variant, which abuses the Everything search system for Windows and provides custom features via a GUI. Continue reading Analysis of Elpaco: a Mimic variant

RomCom hackers chained Firefox and Windows zero-days to deliver backdoor

Russia-aligned APT group RomCom was behind attacks that leveraged CVE-2024-9680, a remote code execution flaw in Firefox, and CVE-2024-49039, an elevation of privilege vulnerability in Windows Task Scheduler, as zero-days earlier this year. “Chai… Continue reading RomCom hackers chained Firefox and Windows zero-days to deliver backdoor

Bitwarden enhances inline autofill features to simplify account creation

Bitwarden further strengthened inline autofill capabilities within its browser extension. Users can easily generate and autofill strong, unique passwords for new accounts directly from the inline autofill menu. This update eliminates the need for manua… Continue reading Bitwarden enhances inline autofill features to simplify account creation