CVE-2024-43461 - Geek Feed

New Windows zero-day exploited by 11 state hacking groups since 2017

March 23, 2025March 23, 2025 geekfeed0Tagged Actively Exploited, CVE-2024-43461, Cyber-espionage, LNK, microsoft, vulnerability, windows, Zero-Day

At least 11 state-backed hacking groups from North Korea, Iran, Russia, and China have been exploiting a new Windows vulnerability in data theft and cyber espionage zero-day attacks since 2017. However, as security researchers Peter Girnus and Aliakbar Zahravi with Trend Micro’s Zero Day Initiative (ZDI) reported today, Microsoft tagged it as “not meeting the […]

4 mins read

Windows vulnerability abused braille “spaces” in zero-day attacks

September 16, 2024September 16, 2024 geekfeed0Tagged 0day, CVE-2024-43461, HTA, microsoft, Void Banshee, windows, Windows vulnerability, Zero-Day

A recently fixed “Windows MSHTML spoofing vulnerability” tracked under CVE-2024-43461 is now marked as previously exploited after it was used in attacks by the Void Banshee APT hacking group. When first disclosed as part of the September 2024 Patch Tuesday, Microsoft had not marked the vulnerability as previously exploited. However, on Friday, Microsoft updated the CVE-2024-43461 advisory to indicate it […]

4 mins read