Critical Chrome 0-Day Under Attack: Mem3nt0 Mori Hackers Actively Exploiting Vulnerability

In March 2025, security researchers at Kaspersky detected a sophisticated campaign exploiting a previously unknown Chrome vulnerability to deliver advanced spyware to high-profile targets.

The attack, dubbed Operation ForumTroll, leveraged personalized phishing links to compromise organizations across Russia, including media outlets, universities, research centers, government agencies, and financial institutions.

A single click on a malicious link was sufficient to trigger infection through Google Chrome or any Chromium-based web browser.

The attackers demonstrated remarkable operational security by crafting extremely short-lived personalized links designed to evade detection systems.

However, Kaspersky’s threat intelligence team identified a complex zero-day sandbox escape exploit embedded within the infection chain.

The vulnerability, tracked as CVE-2025-2783, was subsequently reported to Google and patched in Chrome 134.0.6998.177/.178.

The discovery highlights a previously unknown attack surface in modern browser architecture that threat actors had been actively weaponizing against critical infrastructure and government ...