A new Windows zero-day vulnerability that enables adversaries to abuse malicious stand-alone JavaScript files to bypass Mark-of-the-Web (MoTW) security warnings is being exploited in ransomware operations. Security researchers have published a Proof-of-Concept (PoC) exploit in the public domain, demonstrating the efficacy of the exploit.

Download the report