Chrome 0-day Exploit CVE-2019-13720 Used in Operation WizardOpium (Nov 1, 2019)
Recommendation: Once the zero-day was reported by Kaspersky, Google released a patch for the exploit in Chrome version 78.0.3904.87. It is advised that all companies and users keep up-to-date with the updates of all applications in use. Actors will tend to exploit these vulnerabilities even after a patch is released since many do not update their applications and details of vulnerability being reported on in open sources.
Indicators of Compromise (IOCs) associated with this story can be viewed by ThreatStream users here to identify potential malicious activity.