RomCom exploits Firefox and Windows zero days in the wild. ESET Research details the analysis of a previously unknown vulnerability in Mozilla products exploited in the wild and another previously ...

Security researchers have uncovered two previously unknown zero-day vulnerabilities that are being actively exploited by RomCom, a Russian-linked hacking group, to target Firefox browser users and ...

Russian-based RomCom cybercrime group chained two zero-day vulnerabilities in recent attacks targeting Firefox and Tor Browser users across Europe and North America. The first flaw (CVE-2024-9680 ...

The vulnerability discovered in Mozilla’s Firefox, now assigned CVE-2024-9680 with a CVSS score of 9.8, has been exploited in the wild by Russia-aligned APT group RomCom. RomCom is also known as Storm ...

To escape the process sandbox, the RomCom attack exploited another previously unknown vulnerability in the Windows Task Scheduler that was patched on Nov. 12 and is now tracked as CVE-2024-49039.

Proofpoint tracks overlapping tactics of TA829 and UNK_GreenSec, deploying TransferLoader and RomCom RAT globally.

Firefox and Windows zero days chained to deliver the RomCom backdoor. The backdoor can execute commands and lets attackers download additional modules onto the victim’s machine, ESET research finds ...

A Russian advanced persistent threat (APT) group known as RomCom has been exploiting two zero-day vulnerabilities to hit its victims with potent backdoor malware, security experts have said.

This isn’t the first time RomCom has been spotted using such an impactful vulnerability, with the group using an exploit found in Microsoft Word last year. The affected products are Firefox, the ...

Security researchers have uncovered two previously unknown zero-day vulnerabilities that are being actively exploited by RomCom, a Russian-linked hacking group, to target Firefox browser users and ...