Russian Hackers Exploit Zero-Day Vulnerability in Microsoft Windows

Russian cybercriminals, known as Water Gamayun, also referred to as EncryptHub and LARVA-208, have exploited a recently patched zero-day vulnerability in Microsoft Windows, identified by CVE-2025-26633. This exploitation allowed the attackers to deploy two new backdoors named SilentPrism and DarkWisp. The attackers primarily use payloads via MSC EvilTwin to distribute these backdoors.