Eszak-Korea tamad Chromium

Regisztralj twitterre.

Microsoft reports that a North Korean hacking group, Citrine Sleet, exploited a previously unknown Chromium bug to target crypto organizations just a few days ago.

The zero-day was in a core engine within Chromium, affecting Chrome and other browsers like Edge. Google patched the bug on August 21, two days after the initial exploitation.

Citrine Sleet, known for targeting the crypto industry, used social engineering techniques and fake websites masquerading as legitimate cryptocurrency trading platforms to lure targets.

The attack chain involved tricking victims into visiting a malicious domain, then exploiting another vulnerability in the Windows kernel to install a rootkit.

Once the rootkit was installed, the hackers gained complete control of the targeted computer, potentially compromising all data. - rootkit = gameover Microsoft has notified affected customers but hasn't disclosed the number of targets or victims.

This attack is part of a larger trend of North Korean state-sponsored hacking targeting cryptocurrency. A UN Security Council panel estimated the regime stole $3 billion in crypto between 2017 and 2023.

NK is definitely going full fledged cyber offensive between this and getting spies remotely hired a la the KnowBe4 incident. This will all most likey get worse before it gets better.

Covering this and more like it in my weekly newsletter if you're into that sort of thing - https://www.vulnu.com/