"Recent DarkGate Campaign Exploited Microsoft Windows Zero-Day"

In mid-January 2024, researchers at the Zero Day Initiative (ZDI) discovered a DarkGate campaign that exploited the Windows zero-day flaw, tracked as CVE-2024-21412, using fake software installers. An unauthenticated attacker can exploit the flaw by sending the victim a specially crafted file that bypasses the displayed security checks. The attacker must trick the victims into clicking the file link. In the campaign, threat actors used PDF document lures with Google DoubleClick Digital Marketing (DDM) open redirects, taking victims to compromised websites hosting the exploit for the Microsoft Windows SmartScreen bypass flaw. This article continues to discuss findings regarding the DarkGate campaign.

Security Affairs reports "Recent DarkGate Campaign Exploited Microsoft Windows Zero-Day"

Submitted by grigby1