Italian Spyware Firm Tied to Chrome Zero-Day Attacks

A recent wave of cyberattacks exploiting a zero-day vulnerability in Google Chrome has been linked to an Italian spyware firm tied to Memento Labs. The attacks, part of a campaign dubbed Operation ForumTroll, delivered malware to targeted systems earlier this year, leveraging flaws now tracked as CVE-2025-2857 and CVE-2025-2783.

Researchers identified the malware as a product of Memento Labs, a company that emerged after IntheCyber Group’s acquisition of the former Hacking Team assets. The spyware was used to infiltrate devices through a previously unknown Chrome vulnerability, allowing remote code execution without user interaction.

Security firms monitoring the activity confirmed that the Italian spyware firm tied to Memento Labs played a central role in deploying the malicious payloads. The attacks underline the growing sophistication of commercial surveillance vendors and their ability to exploit zero-day flaws.

Read the full article for more details on the vulnerabilities and the spyware operation:
https://www.bleepingcomputer.com/news/security/italian-spyware-vendor-linked-to-chrome-zero-day-attacks/