The Russian RomCom group exploited Firefox and Tor Browser zero-day vulnerabilities in attacks on users in Europe and North America.The first zero-day, tracked as CVE-2024-9680, is a use-after-free issue in Firefox Animation Timelines.The second zero-day, CVE-2024-49039, is a Windows Task Scheduler privilege escalation flaw.RomCom used the vulnerabilities to deploy a backdoor on victims' systems through a fake website.