Threat Actor: Unknown | Unknown
Victim: Windows Vista and later devices | Windows Vista and later devices
Price: $5,000 USD (negotiable)
Exfiltrated Data Type: Not specified
Additional Information:
- The threat actor is selling an exploit for CVE-2024-30078, a Remote Code Execution (RCE) vulnerability in the WiFi driver affecting all Windows Vista and later devices.
- The exploit allows for remote code execution over WiFi, using compromised access points or saved WiFi networks.
- The exploit can infect a victim’s device through router-based malware or by being within range of a previously connected WiFi network.
- The exploit code is being offered for sale at $5,000 USD, with the price being negotiable.
- The threat actor also offers to develop custom solutions tailored to the buyer’s needs.
- Anastasia is listed as the escrow for this transaction.
- Interested parties are instructed to send a private message to the threat actor. Time wasters and scammers will be ignored.
A threat actor has announced the sale of an exploit for CVE-2024-30078, a Remote Code Execution (RCE) vulnerability in the WiFi driver affecting all Windows Vista and later devices.
In their announcement, the threat actor details that the exploit allows for remote code execution over WiFi, leveraging compromised access points or saved WiFi networks. The exploit reportedly works by infecting a victim through router-based malware or simply by having the victim’s device be within range of a WiFi network they have previously connected to.
The exploit code is offered for sale at $5,000 USD, with the price being negotiable. The seller also offers to develop custom solutions tailored to the buyer’s needs. Anastasia, the new owner of the forum, is listed as the escrow for this transaction.
Interested parties are instructed to send a private message to the threat actor, with a warning that time wasters and scammers will be ignored.
Original Source: https://dailydarkweb.net/threat-actor-claims-to-sell-exploit-for-windows-wifi-rce-cve-2024-30078/