all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

The Return of Candiru: Zero-days in the Middle East

Add to bookmarks
July 21, 2022, 12:24 p.m. | Jan Vojtěšek

Avast Threat Labs decoded.avast.io

We recently discovered a zero-day vulnerability in Google Chrome (CVE-2022-2294) when it was exploited in the wild in an attempt to attack Avast users in the Middle East. The vulnerability was a memory corruption in WebRTC that was abused to achieve shellcode execution in Chrome’s renderer process. We reported this vulnerability to Google, who patched it on July 4, 2022.


The post The Return of Candiru: Zero-days in the Middle East appeared first on Avast Threat Labs.

candiru cve-2022-2294 exploit google chrome middle east pc return zero-day zero-days

Visit resource

More from decoded.avast.io / Avast Threat Labs

GuptiMiner: Hijacking Antivirus Updates for Distributing Backdoors and Casual Mining 1 week, 1 day ago | decoded.avast.io
antivirus antivirus updates avast backdoor +18
From BYOVD to a 0-day: Unveiling Advanced Exploits in Cyber Recruiting Scams 1 week, 6 days ago | decoded.avast.io
advanced apt attack attacker +23
Lazarus and the FudModule Rootkit: Beyond BYOVD with an Admin-to-Kernel Zero-Day 2 months ago | decoded.avast.io
admin analysis back beyond +17
Decrypted: HomuWitch Ransomware 2 months, 1 week ago | decoded.avast.io
avast companies current decryptor +10
Decrypted: Rhysida Ransomware 2 months, 2 weeks ago | decoded.avast.io
avast companies decryptor decryptors +19
Avast Q4/2023 Threat Report 2 months, 3 weeks ago | decoded.avast.io
api attacks avast blocked +14
Avast Updates Babuk Ransomware Decryptor in Cooperation with Cisco Talos and Dutch Police 3 months, 3 weeks ago | decoded.avast.io
avast babuk babuk ransomware called +19
Opening a new front against DNS-based threats 4 months, 2 weeks ago | decoded.avast.io
attacks avast decentralized dns +11
Avast Q3/2023 Threat Report 5 months, 2 weeks ago | decoded.avast.io
attacks avast blocked desktop +11

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Senior Software Engineer, Security

@ Niantic | Zürich, Switzerland
View on infosec-jobs.com

Consultant expert en sécurité des systèmes industriels (H/F)

@ Devoteam | Levallois-Perret, France
View on infosec-jobs.com

Cybersecurity Analyst

@ Bally's | Providence, Rhode Island, United States
View on infosec-jobs.com

Digital Trust Cyber Defense Executive

@ KPMG India | Gurgaon, Haryana, India
View on infosec-jobs.com

Program Manager - Cybersecurity Assessment Services

@ TestPros | Remote (and DMV), DC
View on infosec-jobs.com
View more jobs