A North Korean hacking group exploited a previously unknown vulnerability in Google Chrome earlier this month to target cryptocurrency organisations, according to Microsoft security researchers.
The zero-day flaw, identified as CVE-2024-7971, allowed remote code execution in Chrome’s V8 JavaScript engine. Google released a fix on August 21, 2024, but not before it was used in attacks attributed to a threat actor known as Citrine Sleet.
Microsoft’s Threat Intelligence team discovered the exploit activity on August 19. They assessed with high confidence that a North Korean group was behind the attacks, which aimed to steal cryptocurrency and financial assets.
Google confirmed the vulnerability was patched but declined further comment, as reported by TechCrunch.
The hackers directed targets to a malicious domain, voyagorclub[.]space, likely using social engineering tactics. When victims connected, the Chrome exploit was delivered,…
The zero-day flaw, identified as CVE-2024-7971, allowed remote code execution in Chrome’s V8 JavaScript engine. Google released a fix on August 21, 2024, but not before it was used in attacks attributed to a threat actor known as Citrine Sleet.
Microsoft’s Threat Intelligence team discovered the exploit activity on August 19. They assessed with high confidence that a North Korean group was behind the attacks, which aimed to steal cryptocurrency and financial assets.
Google confirmed the vulnerability was patched but declined further comment, as reported by TechCrunch.
The hackers directed targets to a malicious domain, voyagorclub[.]space, likely using social engineering tactics. When victims connected, the Chrome exploit was delivered,…
