all InfoSec news
The Return of Candiru: Zero-days in the Middle East
July 21, 2022, 12:24 p.m. | Jan Vojtěšek
Avast Threat Labs decoded.avast.io
We recently discovered a zero-day vulnerability in Google Chrome (CVE-2022-2294) when it was exploited in the wild in an attempt to attack Avast users in the Middle East. The vulnerability was a memory corruption in WebRTC that was abused to achieve shellcode execution in Chrome’s renderer process. We reported this vulnerability to Google, who patched it on July 4, 2022.
The post The Return of Candiru: Zero-days in the Middle East appeared first on Avast Threat Labs.
candiru cve-2022-2294 exploit google chrome middle east pc return zero-day zero-days
More from decoded.avast.io / Avast Threat Labs
Decrypted: HomuWitch Ransomware
3 months, 1 week ago |
decoded.avast.io
Decrypted: Rhysida Ransomware
3 months, 2 weeks ago |
decoded.avast.io
Opening a new front against DNS-based threats
5 months, 2 weeks ago |
decoded.avast.io
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Corporate Intern - Information Security (Year Round)
@ Associated Bank | US WI Remote
Senior Offensive Security Engineer
@ CoStar Group | US-DC Washington, DC