Russian RomCom APT Group Leverages Zero-Day Flaws in Firefox and Windows
Russia-backed hackers, known as RomCom, have exploited critical zero-day vulnerabilities in Mozilla Firefox and Windows to launch targeted attacks
Stay informed on Firefox security updates, vulnerabilities, and privacy enhancements with the latest in information security news and expert analysis.
Search across headline titles and summaries.
Background for this topic.
Firefox is an open-source web browser developed by Mozilla. It executes untrusted web content using security boundaries such as the same-origin policy and sandboxing, while providing protections against deceptive sites, downloads, and unwanted tracking. Its extension system also allows third-party code to access browser data or modify pages, depending on the permissions granted.
For security teams, browser vulnerabilities matter because a malicious or compromised website can exploit flaws to achieve code execution, bypass isolation, or steal information; exploitation risk depends on the specific defect and the deployed configuration. Vulnerability management therefore includes monitoring Mozilla security advisories, testing and rapidly deploying updates, and using the Extended Support Release where its slower feature cadence suits managed environments. Administrators should control extensions, apply enterprise policies, and treat privacy settings and browsing data as part of endpoint security and incident investigation.
Weekly headline count for the current query.
Russia-backed hackers, known as RomCom, have exploited critical zero-day vulnerabilities in Mozilla Firefox and Windows to launch targeted attacks
One of them, CVE-2023-37201, involved a use-after-free issue in WebRTC certificate generation
The claims come from Google’s Threat Analysis Group, which published an advisory about the threat