North Korean ScarCruft Exploits Windows Zero-Day to Spread RokRAT Malware

Updated on October 16, 2024

The North Korean threat actor known as ScarCruft has been linked to the zero-day exploitation of a now-patched security flaw in Windows to infect devices with malware known as RokRAT.
The vulnerability in question is CVE-2024-38178 (CVSS score: 7.5), a memory corruption bug in the Scripting Engine that could result in remote code execution when using the Edge browser in Internet Explorer Mode….

Read the rest of the story at Read More

Source: The Hacker News

January 22, 2025 Uncategorized

Trump Terminates DHS Advisory Committee ...

January 9, 2025 Uncategorized

Webinar: Learn How to Stop Encrypted Att...

January 12, 2024 Uncategorized

North Korean ScarCruft Exploits Windows Zero-Day to Spread RokRAT Malware

Related posts

Trump Terminates DHS Advisory Committee ...

Webinar: Learn How to Stop Encrypted Att...

Cryptominers Targeting Misconfigured Apa...

Leave a Comment Cancel reply

Recent News

Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi

Commvault CVE-2025-34028 Added to CISA KEV After Active Exploitation Confirmed

⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors

Perfection is a Myth. Leverage Isn’t: How Small Teams Can Secure Their Google Workspace

Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware

U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems

TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China

How to Automate CVE and Vulnerability Advisory Response with Tines