Google security researchers have found new vulnerabilities detected in Chrome, Firefox, and Windows. The researchers found a commercial spyware operation with ties to Variston IT, which is connected to an exploitation framework called “Heliconia.”
Barcelona-based Variston IT claims to provide custom security solutions. Google reported that Heliconia was likely used in the wild as a zero-day exploit. Heliconia exploits a Chrome renderer bug to run malware on a user’s operating system.
Heliconia exploits a Chrome renderer bug to run malware on a user’s operating system. It deploys a malicious PDF document containing an exploit for Windows Defender. It utilizes a set of Firefox exploits for Windows and Linux machines.
Google said, “TAG’s research underscores that the commercial surveillance industry is thriving and has expanded significantly in recent years, creating risk for Internet users around the globe. Commercial spyware puts advanced surveillance capabilities in the hands of governments who use them to spy on journalists, human rights activists, political opposition and dissidents.”
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.
