In mid-March 2025, a deluge of personalized phishing emails took Russia by storm. When analyzed, the underlying vulnerability had researchers swimming in uncharted waters; they had found a new Chrome zero-day! CVE-2025-2783 is a high-severity flaw that involves an incorrect handle provided in unspecified circumstances, potentially leading to a sandbox escape via a malicious file. […]
The post Hook, Line, and Sinker: Chrome Patches Zero-Day Used in Phishing Attacks appeared first on SecPod Blog.