Google warned that a cybercriminal organization has exploited a zero-day vulnerability in the Microsoft SmartScreen security feature to distribute the Magniber ransomware.
Google’s Threat Analysis Group (TAG) said the vulnerability, tracked as CVE-2023-24880, has been exploited since at least January. On February 15, the researchers at the internet behemoth informed Microsoft of their findings, and with the company’s most recent Patch Tuesday updates, a fix was made available. The SmartScreen feature is intended to shield users from malware and phishing, among other things by highlighting potentially harmful files downloaded from the internet.
The threat actor responsible for the Magniber ransomware used CVE-2023-24880 to distribute specially created MSI files.