Security News > 2025 > February > 7-Zip MotW bypass exploited in zero-day attacks against Ukraine
2025-02-04 14:43
A 7-Zip vulnerability allowing attackers to bypass the Mark of the Web (MotW) Windows security feature was exploited by Russian hackers as a zero-day since September 2024. [...]
News URL
Related news
- Broadcom fixes three VMware zero-days exploited in attacks (source)
- Apple fixes WebKit zero-day exploited in ‘extremely sophisticated’ attacks (source)
- Apple Releases Patch for WebKit Zero-Day Vulnerability Exploited in Targeted Attacks (source)
- Defending against EDR bypass attacks (source)
- EncryptHub linked to MMC zero-day attacks on Windows systems (source)
- Google fixes exploited Chrome sandbox bypass zero-day (CVE-2025-2783) (source)
- Zero-Day Alert: Google Releases Chrome Patch for Exploit Used in Russian Espionage Attacks (source)
- Critical auth bypass bug in CrushFTP now exploited in attacks (source)
- Google fixes Android zero-days exploited in attacks, 60 other flaws (source)
- 41% of Attacks Bypass Defenses: Adversarial Exposure Validation Fixes That (source)