tags:ITWQakBotlpewindows original link: QakBot attacks with Windows zero-day (CVE-2024-30051) newsletter link: exploits.club Weekly Newsletter 21
Exploits Club Summary:
Kaspersky researchers accidentally stumbled across an 0-day (we hate it when that happens!) being used together with QakBot. While the team has not provided too many technical details at this time as they wait for users to patch their system, it was noted that the exploit is very similar to CVE-2023-36033, which has a nice RCA already as part of P0âs ITW efforts.