Microsoft fixes Windows zero-day exploited in ransomware attacks
Microsoft has patched a zero-day bug (CVE-2023-24880) used by attackers to bypass the Windows SmartScreen cloud-based anti-malware service and deploy Magniber ransomware payloads. The vulnerability was discovered by Google Threat Analysis Group (TAG) and reported to Microsoft on February 15. The malicious MSI files have been downloaded over 100,000 times since January 2023, with over 80% of downloads in Europe. The Magniber ransomware operation has been active since October 2017 and initially focused on targeting South Korea. CVEs: CVE-2022-44698, CVE-2023-24880 Malware: Magniber, QakBot [View Article](https://www.bleepingcomputer.com/news/security/microsoft-fixes-windows-zero-day-exploited-in-ransomware-attacks/)