The bug exploited in the wild, CVE-2024-26234, used an executable signed by a legitimate Microsoft Hardware Publisher Certificate containing a backdoor to control infected Windows machines.
Trend Micro's Zero Day Initiative highlighted another vulnerability under attack, reported by Peter Girrus, before Microsoft's patch release.
Collection
[
|
...
]