Cybersecurity researchers from Google’s Threat Analysis Group (TAG) say a commercial company from Spain has developed a exploitation network (Opens in a new tab) for Windows, Chrome, and Firefox, and you’ve likely sold it to government agencies sometimes in the past.
In a blog post published earlier this week, the TAG team said that a Barcelona-based company called Variston IT is likely linked to the Heliconia framework, which exploits back-to-day vulnerabilities in Chrome, Firefox and Google Chrome. Microsoft Defender (Opens in a new tab). It also says that the company has likely provided all the tools needed to deploy the payload on the target End point (Opens in a new tab).