Microsoft recently issued a security warning about a severe zero-day vulnerability in Google Chrome. The flaw was identified as CVE-2024-7971 which has been exploited by the North Korean hacker group; Citrine Sleet. The vulnerability was caused by a security gap that was unknown to Google at the time of exploitation. On August 19th 2024, Microsoft detected that Citrine Sleet had exploited this critical vulnerability. The hackers used a sophisticated Trojan malware known as AppleJeus which enabled them to remotely take control of affected systems. This malware is infamous for targeting cryptocurrency users by penetrating into their digital assets.
The exact number of affected users is unknown yet. There are 3 billion global users of Google chrome. Google responded two days later by releasing a patch on August 21 to stop the malware. Moreover, users have been advised by Google to update their browsers immediately to avoid any potential loss. Versions of Chrome prior to 128.0.6613.84 are said to be vulnerable to this exploit.
The hacker group; Citrine Sleet is also known as Chollima or DEV-0139. It is a North Korean hacking group with a history of targeting cryptocurrency users. They create fake cryptocurrency platforms and job portals to lure users into downloading malicious softwares. Previously, the hackers also used the FudModule rootkit to execute remote code and employed social engineering tactics to trick their victims. This group has previously been involved in multiple high-profile cyber-attacks.
Yonhap, a South Korea’s news agency reported that North Korea has been involved in the theft of around $3 billion in cryptocurrency during 2017-2023. In March 2024, the United Nations Security Council also alleged North Korea of generating 50% of its foreign currency income through hacking activities. These funds are then allegedly used to promote the country’s weapons industry.
This incident emphasizes the urgent need for caution and prompt adoption of security measures. Users can stay safe by timely updating software applications on their devices.