RenderShock 0-Click Exploit Executes Payloads Silently via Background Process

RenderShock 0-Click Exploit Executes Payloads Silently via Background Process A new class of cyberattack called RenderShock has been identified that can compromise enterprise systems without requiring any user interaction, exploiting the very productivity features designed to help workers preview and process files automatically. Unlike traditionalmalwarethat requires users to click on malicious attachments or links, RenderShock leverages passive execution surfaces that operate silently in the background. These include file preview panes, document indexing services, antivirus scanners, and cloud synchronization tools that automatically process files without explicit user action. The attack methodology exploits trusted system components that parse untrusted files, turning routine operations like hovering over a document in Windows Explorer or having files automatically indexed by services into potential compromise vectors. Modern operating systems and enterprise tools are built under the...