Russian Hackers Target Mozilla, Windows in New Exploit Chain

ESET Discovers Two Major Vulnerabilities Exploited by Russian RomCom Hacking Group Chris Riotta (@chrisriotta) • November 26, 2024

Two vulnerabilities in Mozilla products and Windows are actively exploited by RomCom, a Kremlin-linked cybercriminal group known for targeting businesses and conducting espionage, warn security researchers from Eset.

See Also: Cloud Security and Developers: Role of Zero Standing Privilege

Researchers identified two critical vulnerabilities in Mozilla Foundation products. One, tracked as CVE-2024-9680 is a use-after-free flaw allowing code execution in the Firefox and the Thunderbird email client. It also affects the Tor Browser, which is a modified version of Firefox. The other flaw CVE‑2024‑49039 is a Windows privilege escalation bug bypassing the Firefox sandbox. Mozilla patched the first on Oct. 9, and Microsoft announced a fix for the ...