Windows zero-day leveraged for RokRAT malware delivery

17 October 2024

Threat actors leveraged the flaw to target a toast advertisement program with an unsupported Internet Explorer module, which when installed would trigger a type confusion error and several malicious actions, including the deployment of the RokRAT trojan, a joint analysis from AhnLab Security Intelligence Center and South Korea’s National Cyber Security Center showed. Aside from having file enumeration and arbitrary process termination capabilities, RokRAT’s latest iteration has also enabled remote command execution and data exfiltration from various browsers and apps.

Source: SC Magazine

Date:

17 October 2024

Categorie(s):

NEWS

Tag(s):

Breach, IT, Microsoft, OS, Windows

Microsoft: Ransomware Attacks Growing More Dangerous, Complex17 October 2024
Fake North Korean IT Workers Infiltrate Western Firms, Demand Ransom17 October 2024
CyberRisk TV Live Daily Intro from Oktane 2024 – Day 2 – OKT24 #217 October 2024
Windows zero-day leveraged for RokRAT malware delivery17 October 2024
Over 65K impacted by Varsity Brands breach17 October 2024