Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
×
Security Privacy

Russia-Linked Hackers Exploited Firefox, Windows Bugs In 'Widespread' Hacking Campaign (techcrunch.com) 31

An anonymous reader quotes a report from TechCrunch: Security researchers have uncovered two previously unknown zero-day vulnerabilities that are being actively exploited by RomCom, a Russian-linked hacking group, to target Firefox browser users and Windows device owners across Europe and North America. RomCom is a cybercrime group that is known to carry out cyberattacks and other digital intrusions for the Russian government. The group -- which was last month linked to a ransomware attack targeting Japanese tech giant Casio -- is also known for its aggressive stance against organizations allied with Ukraine, which Russia invaded in 2014.

Researchers with security firm ESET say they found evidence that RomCom combined use of the two zero-day bugs -- described as such because the software makers had no time to roll out fixes before they were used to hack people -- to create a "zero click" exploit, which allows the hackers to remotely plant malware on a target's computer without any user interaction. "This level of sophistication demonstrates the threat actor's capability and intent to develop stealthy attack methods," ESET researchers Damien Schaeffer and Romain Dumont said in a blog post on Monday. [...] Schaeffer told TechCrunch that the number of potential victims from RomCom's "widespread" hacking campaign ranged from a single victim per country to as many as 250 victims, with the majority of targets based in Europe and North America.
Mozilla and the Tor Project quickly patched a Firefox-based vulnerability after being alerted by ESET, with no evidence of Tor Browser exploitation. Meanwhile, Microsoft addressed a Windows vulnerability on November 12 following a report by Google's Threat Analysis Group, indicating potential use in government-backed hacking campaigns.

Russia-Linked Hackers Exploited Firefox, Windows Bugs In 'Widespread' Hacking Campaign

Comments Filter:
  • by test321 ( 8891681 ) on Wednesday November 27, 2024 @08:19AM (#64975567)

    No need to panic, if you have updated FF when it was out then you're safe. The FF bug (reported by D. Schaeffer from ESET) was corrected in version 131.0.2 https://www.mozilla.org/en-US/... [mozilla.org]

  • Derogatory names (Score:5, Interesting)

    by Anonymous Coward on Wednesday November 27, 2024 @08:42AM (#64975599)
    I've seen the idea mentioned a few times that hacking groups should be given undesirable names instead of what the security companies are currently using. Who'd want to be known as "Pencil dicks" or "Basement dwelling virgins"?
    • by geekmux ( 1040042 ) on Wednesday November 27, 2024 @09:19AM (#64975651)

      I've seen the idea mentioned a few times that hacking groups should be given undesirable names instead of what the security companies are currently using. Who'd want to be known as "Pencil dicks" or "Basement dwelling virgins"?

      American marketing could re-brand attacks that way. Claim the group is called (foreign language) something, which loosely translates into “pencil dick”.

      It’s the perpetually hacked egos that prevent that. Lot easier for some arrogant CEO to pseudo-brag about how they were hacked by “Wicked Spear” rather than “Loser Squad”.

    • by Anonymous Coward
      That wouldn't discourage them. Most of the really harmful people are in it for money - they will keep on no matter what you call them.
  • Even if we assume small countries, 250 targets per country is not a lot.

  • Hooray! (Score:4, Funny)

    by Impy the Impiuos Imp ( 442658 ) on Wednesday November 27, 2024 @09:05AM (#64975629) Journal

    Yay! Windows 10 is approaching "end of security lifespan!", and my computer "cannot upgrade to Windows 11!"

    Hooray, Microsoft!

    I assume with Windows 11 there's a direct pipine of the content of every file to Microsoft for advertising analysis.

    • I assume with Windows 11 there's a direct pipine of the content of every file to Microsoft for advertising analysis.

      Their (confidential) group of (NDA) corporate customers, also known as their profitable customer base, might just end up having a major fucking problem with that (private) move.

      Lets see how long this bullshit lasts.

      • by Targon ( 17348 )

        Good IT departments pay attention to product end of life issues and take steps to deal with it, including replacing all those 8th gen and older devices prior to October of 2025, plus putting in the effort to upgrade all Windows 10 machines to Windows 11.

    • by vbdasc ( 146051 )

      Yay! Windows 10 is approaching "end of security lifespan!", and my computer "cannot upgrade to Windows 11!"

      Microsoft telling you that a computer "cannot upgrade to Windows 11!" doesn't mean that the computer cannot be upgraded to Windows 11.

    • Re: (Score:2, Insightful)

      by The-Ixian ( 168184 )

      Just install Linux.

      It's what I did on my computer. It's a great productivity OS, these days. It even runs most Windows games with minimal effort with the likes of Lutris, Steam, Heroic launcher, etc.

    • Yay! Windows 10 is approaching "end of security lifespan!", and my computer "cannot upgrade to Windows 11!"

      Microsoft has announced that it will offer another year of security updates for a modest price.

  • by Baron_Yam ( 643147 ) on Wednesday November 27, 2024 @10:46AM (#64975745)

    Can we not just give Russia the Internet Death Penalty and have allied nations refuse to route their packets?

  • by Pf0tzenpfritz ( 1402005 ) on Wednesday November 27, 2024 @12:48PM (#64975947) Journal

    How is it that all the cool hackers are Russia-backed, China-linked or even North-Korean? Except a few also-run cybercrooks from Iran and other certified boogy states? What ever happened to the good old Italian Mafia? American gangsters, West-German terrorists, their Eastern state-sponsored collegues, Gauloise smoking French do no goods in leather jackets and polite and ice-cold British criminals?
    Have we lost the crime race?

To communicate is the beginning of understanding. -- AT&T

Working...