A now-patched security flaw in Google Chrome was exploited as a zero-day by a threat actor known as TaxOff to deploy a backdoor codenamed Trinper. The attack, observed in mid-March 2025 by Positive Technologies, involved the use of a sandbox escape vulnerability tracked as CVE-2025-2783 (CVSS score: 8.3). Google addressed the flaw later that month after Kaspersky reported in-the-wild
![]()
source https://thehackernews.com/2025/06/google-chrome-zero-day-cve-2025-2783.html
source https://thehackernews.com/2025/06/google-chrome-zero-day-cve-2025-2783.html