Title: QakBot attacks with Windows zero-day (CVE-2024-30051)

Published:  Tue, 14 May 2024 17:14:38 +0000

Description: In April 2024, while researching CVE-2023-36033, we discovered another zero-day elevation-of-privilege vulnerability, which was assigned CVE-2024-30051 identifier and patched on May, 14 as part of Microsoft’s patch Tuesday. We have seen it exploited by QuakBot and other malware.

Source: SECURELIST.COM