A new Windows zero-day allows threat actors to use malicious JavaScript files to bypass Mark-of-the-Web security warnings. Threat actors are already seen using the zero-day bug in ransomware attacks.

Automatically opening downloaded files in Google Chrome is a relatively straightforward process. However, only certain file types can be opened automatically. Firstly, proceed by downloading a file.

Unlike previous SVG-based threats that relied on hosted payloads or third-party file sharing, this campaign runs entirely within the client’s browser. By avoiding executable drops and leveraging ...