DarkMe RAT spread via novel Windows Defender zero-day

14 February 2024

BleepingComputer reports that attacks exploiting a new Windows Defender zero-day flaw, tracked as CVE-2024-21412, have been conducted by the Water Hydra threat operation, also known as DarkCasino, against foreign exchange traders on New Year’s Eve to facilitate the distribution of the DarkMe remote access trojan. Water Hydra leveraged the vulnerability which has been addressed by Microsoft alongside another Windows SmartScreen zero-day, tracked as CVE-2024-21351, as part of this month’s Patch Tuesday to bypass Windows Defender SmartScreen and infiltrate foreign exchange trading forums and Telegram channels, a report from Trend Micro revealed.

Source: SC Magazine

Date:

14 February 2024

Categorie(s):

NEWS

Tag(s):

Identity Theft, IT, Phishing, RAT, Windows Defender

Dating apps kiss’n’tell all sorts of sensitive personal info4 May 2024
Multilogin Antidetect Browser Review 20244 May 2024
Navigating the API Security Landscape: A CEO’s Perspective on Embedding Zero Trust Principles4 May 2024
Lightsail VPN Review: Is Lightsail VPN Safe? [+Best Alternatives]4 May 2024
How To Secure Your Business In The Times Of All-pervasive Hackers4 May 2024