EN
  • Cyber stability
  • Secops
  • Risks management
  • Digital transformation
  • Digital Sovereignty
  • Cybercrime
  • Industry and OT
  • Fraud
  • Digital identity
  • Cyber +
    • A spying campaign targeting Russian entities exploited a zero-day flaw in Chrome
    • Home
    • Cybercrime
    • A spying campaign targeting Russian entities exploited a zero-day flaw in Chrome

    A spying campaign targeting Russian entities exploited a zero-day flaw in Chrome

    Written by
    The Editorial Team
    03.29.25
    Cybercrime
    01
    MIN
    A spying campaign targeting Russian entities exploited a zero-day flaw in Chrome
    A spying campaign targeting Russian entities exploited a zero-day flaw in Chrome
    A spying campaign targeting Russian entities exploited a zero-day flaw in Chrome
    Image Operation Endgame leads to the arrest of Smokeloader botnet clients
    Cybercrime
    04.13.25 Cybercrime
    Next article
    Operation Endgame leads to the arrest of Smokeloader botnet clients
    Read
    01
    MIN
    Image Ransomware: Hunters International to abandon data encryption
    Cybercrime
    04.04.25 Cybercrime
    Next article
    Ransomware: Hunters International to abandon data encryption
    Read
    01
    MIN
    Image Over 300 suspected cybercriminals arrested in Africa-wide operation
    Cybercrime
    03.25.25 Cybercrime
    Next article
    Over 300 suspected cybercriminals arrested in Africa-wide operation
    Read
    01
    MIN
    Image A LockBit Developer Extradited to the United States to Face Justice
    Cybercrime
    03.17.25 Cybercrime
    Next article
    A LockBit Developer Extradited to the United States to Face Justice
    Read
    01
    MIN
    The complexity of the malicious tools used suggests the involvement of a nation-state actor in this cyber-surveillance operation targeting media and universities.

    Kaspersky revealed on March 25, 2025, that a spying campaign targeting Russian media and universities—dubbed Operation ForumTroll—had exploited a zero-day vulnerability in Google Chrome. Detected in mid-March 2025, the campaign relied on phishing emails impersonating the organizers of a Russian forum for scientists and experts.

    These emails contained personalized malicious links for each target, which only remained active for a short time, leaving minimal traces. A single click on the link—when opened in Chrome—was enough to infect the victim’s device. The exploit enabled attackers to bypass all of the browser’s security protections and gain instant access to the system’s information infrastructure.

    “We have discovered and reported dozens of zero-day exploits actively used in attacks, but this particular one is certainly among the most interesting we’ve encountered,” reads Kaspersky’s report. The high level of sophistication suggests a state-sponsored actor, although the researchers have not yet identified who is behind the campaign.

    Google has confirmed the existence of the vulnerability and released a patch on March 25, 2025. Users are therefore strongly advised to update their Chrome browser without delay.

    The Editorial Team
    03.29.25
    Articles by the same author:
    1
    04.17.25 Cybercrime
    Canada: Authorities Arrest 87 Cyber Fraudsters Using LabHost
    Read
    01
    MIN
    2
    04.16.25 Industry and OT
    Canada: Free cybersecurity tools for small water, electricity, and gas providers
    Read
    01
    MIN
    3
    04.16.25 Cyber stability
    Taiwan accuses Chinese ship captain of cutting undersea cable
    Read
    01
    MIN
    4
    04.13.25 Cyber stability
    United States: The Trump administration may lay off a third of CISA employees
    Read
    01
    MIN
    Image Operation Endgame leads to the arrest of Smokeloader botnet clients
    Cybercrime
    04.13.25 Cybercrime
    Next article
    Operation Endgame leads to the arrest of Smokeloader botnet clients
    Read
    01
    MIN
    Image Ransomware: Hunters International to abandon data encryption
    Cybercrime
    04.04.25 Cybercrime
    Next article
    Ransomware: Hunters International to abandon data encryption
    Read
    01
    MIN
    Image Over 300 suspected cybercriminals arrested in Africa-wide operation
    Cybercrime
    03.25.25 Cybercrime
    Next article
    Over 300 suspected cybercriminals arrested in Africa-wide operation
    Read
    01
    MIN
    Image A LockBit Developer Extradited to the United States to Face Justice
    Cybercrime
    03.17.25 Cybercrime
    Next article
    A LockBit Developer Extradited to the United States to Face Justice
    Read
    01
    MIN
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.