- Hackers managed to exploit flaws in Windows and Firefox
- From October 10 to November 4, they lured users to a fraudulent website
- Just open the website and the malicious code is already running
Hackers managed to discover and exploit a previously unknown bug that occurred in the operating system Windows. After connecting with products from the company Mozilla (e.g. Firefox browser) that also had a security flaw could easily get into computers or other devices. At the same time, the attack was specific in that it was enough for the user to enter a fraudulent website – and he was already trapped.
Company ESETwhich specializes in cyber security, has now drawn attention to this new and very serious threat (itself rated it dangerous 9.8 out of 10). However, she did not reveal the name of the fraudulent website. Nevertheless, she confirmed that the attackers were successful in North America, Europe and specifically in Czechia. And it was supposed to be about pro-russian hackers from the RomCom group.
The good news is that Windows has already fixed the bug labeled CVE-2024-49039. Mozilla has released an update, but those who haven’t downloaded it are still at risk. At the same time, the principle of the attack is so simple that anyone could stumble upon it – just click on the appropriate link. Experts do not know how the hackers spread it, but in any case, clicking on it was enough to trigger the malicious code. The hackers got directly into the device inconspicuously and were able to start operating.
Are you careful about the links you click?
Source: www.svetandroida.cz
