#CitrineSleet

North Korean APT Exploits Novel Chromium, Windows Bugs to Steal Crypto

by

September 3, 2024 at 05:38PM A North Korean threat actor recently leveraged advanced vulnerabilities in Windows and Chromium browsers to target the cryptocurrency industry. The attacker utilized a type confusion issue in Chromium and a privilege escalation bug in Windows to execute a sophisticated campaign, deploying a rootkit and custom Trojan to compromise targeted systems … Read more

North Korean Hackers Deploy FudModule Rootkit via Chrome Zero-Day Exploit

by

August 31, 2024 at 12:06PM North Korean threat actors exploited a recently patched security flaw in Google Chrome and Chromium web browsers to deploy the FudModule rootkit. Microsoft attributed this activity to a group known as Citrine Sleet, part of the Lazarus Group, targeting financial institutions involved in cryptocurrency. The attack involved a zero-day exploit … Read more