Tag: vulnerability

ESET Research discovers UEFI Secure Boot bypass vulnerability

January 16, 2025

ESET researchers have discovered a vulnerability, affecting the majority of UEFI-based systems, that allows actors to bypass UEFI Secure Boot. This vulnerability, assigned CVE-2024-7344, was found in a UEFI application signed by Microsoft’s “Microsoft Corporation UEFI CA 2011” third-party UEFI certificate. Exploitation of this vulnerability can lead to the execution of untrusted code during system … More ESET Research discovers UEFI Secure Boot bypass vulnerability

ESET Research discovers Mozilla and Windows zero day & zero click vulnerabilities exploited by RomCom APT group

November 26, 2024

ESET Research details the analysis of a previously unknown vulnerability in Mozilla products exploited in the wild and another previously unknown Microsoft Windows vulnerability, combined in a zero-click exploit. ESET researchers discovered a previously unknown vulnerability, CVE-2024-9680, in Mozilla products, exploited in the wild by APT group RomCom. Further analysis revealed another zero-day vulnerability in … More ESET Research discovers Mozilla and Windows zero day & zero click vulnerabilities exploited by RomCom APT group

Cyberespionage the Gamaredon way

November 14, 2024

ESET researchers introduce the Gamaredon APT group, detailing its typical modus operandi, unique victim profile, vast collection of tools and social engineering tactics. When describing state-backed threat actors, one would probably expect a super sophisticated, stealthy group capable of avoiding all alarms and defenses with surgical precision. With Gamaredon, most of that goes out the … More Cyberespionage the Gamaredon way

Amazon confirms employee data exposed in leak linked to MOVEit vulnerability

November 13, 2024

Amazon confirmed that over 2.86 million of the more than 5 million records of employee data was exposed in a breach linked to the MOVEit vulnerability (CVE-2023-34362). According to The Register*, the breach affected a property management vendor, compromising work contact information such as email addresses, phone numbers, and building locations. Although many companies were … More Amazon confirms employee data exposed in leak linked to MOVEit vulnerability

ESET releases latest Q2 2024–Q3 2024 APT report: APT groups expand targeting and diplomatic espionage

November 7, 2024

An overview of the activities of selected APT groups investigated and analyzed by ESET Research in Q2 2024 and Q3 2024. ESET APT Activity Report Q2 2024–Q3 2024 summarizes notable activities of selected advanced persistent threat (APT) groups that were documented by ESET researchers from April 2024 until the end of September 2024. The highlighted … More ESET releases latest Q2 2024–Q3 2024 APT report: APT groups expand targeting and diplomatic espionage