Zero day vulnerabilities are basically software vulnerabilities. Various organizations open security patches to quickly resolve errors in their own software. But if hackers can exploit the flaw before the patch is exposed, it's called a zero-day vulnerability. Cyber ​​security firm Eset has found evidence of cyber attacks using two such zero day security flaws in Windows operating system and Firefox browser.

Zero-day vulnerability

According to Eset, the bugs have already been fixed by Microsoft and Firefox authorities. But before the solution, a group of cybercriminals named Romcom took advantage of the flaws and injected malware into the smartphones or computers of Internet users and controlled it remotely. The romcom cyber criminal group is also known as Storm-0978, Tropical Scorpius and Void Rabisu.

Romcom launched fake website to fool users. Users would secretly install malicious malware on their smartphones or computers just by accessing that website. This cyber attack was carried out by exploiting CVE-2024-9680 (CVSS score 9.8) of Firefox browser and CVE-2024-49039 (CVSS score 8.8) of Windows operating system.

Most users in Europe and North America are believed to be victims of this attack. However, there is no specific information about how the malicious link was spread or how users accessed the fake website.