Security professionals say the rise of zero-days in Chrome this week demonstrates a greater number of malicious actors in attacks compared to browsers.
Malicious actors use the remote control tool and social engineering to access victims’ systems and install malware.
The domain and Telegram account of the notorious knowledge leak were confiscated on Wednesday morning.
Security professionals say this would possibly be a “smash and grab” attack, in which risky actors step in, extract the knowledge they can find, and then try to sell it on the dark web.
In this month’s release, Redmond patched 60 CVEs, adding two zero-day vulnerabilities and one SharePoint Server remote code execution vulnerability deemed critical.
The “Jenny Green” emails delivered LockBit Black attachments ZIP files.
Security professionals say the industry can expect this bug to be exploited soon, so fix, monitor, and apply other measures, such as browser isolation and sandboxing.
The FCC has assigned it a one-of-a-kind risk rating for its persistent fraudulent activity.
The “request-darwin-lite” package was downloaded more than 400 times before being deleted.
Security professionals say critical flaws in those cellular modems can affect only the industrial, healthcare, automotive, financial and telecommunications sectors.