"Hackers Used New Windows Defender Zero-Day to Drop DarkMe Malware"

Microsoft has patched a Windows Defender SmartScreen zero-day vulnerability exploited in the wild by the financially motivated threat group, tracked as Water Hydra and DarkCasino, to deploy the DarkMe Remote Access Trojan (RAT). Trend Micro security researchers discovered the hacker group using the zero-day vulnerability in attacks on New Year's Eve day. According to a recent security advisory from Microsoft, an unauthenticated attacker could send a specially crafted file to a targeted user in order to evade displayed security checks. This article continues to discuss the exploitation of the Windows Defender zero-day flaw by hackers to deliver DarkMe malware. 

Bleeping Computer reports "Hackers Used New Windows Defender Zero-Day to Drop DarkMe Malware"

Submitted by grigby1

Submitted by grigby1 CPVI on