EncryptHub, a notorious threat actor associated with intrusions at 618 organizations, reported two possible Windows zero-day vulnerabilities to Microsoft. This seems like a double role for an organization that moves between cybercrime and security research. The reported vulnerabilities are CVE-2025-24061 (Mark of the Web bypass) and CVE-2025-24071 (File Explorer spoofing). Microsoft resolved the issues during […]

• Creator: Mels Dees
• Publish Date: 08.04.2025, 11:44
• Categories: Security, EncryptHub, Hacker, zero-day