Security Flaw in Google Chrome Exploited as Zero-Day by TaxOff to Deploy Trinper Backdoor

A security flaw in Google Chrome, identified as CVE-2025-2783, was exploited as a zero-day by a malicious actor known as TaxOff to deploy a backdoor named Trinper. The attack, observed in March 2025 by Positive Technologies, utilized a sandbox escape vulnerability with a CVSS score of 8.3. Google later patched the flaw in the same month after Kaspersky reported active exploitations in the wild.