Microsoft Warns of North Korean Group Citrine Sleet Exploiting Chromium Zero-Day Vulnerability Targeting Cryptocurrency Sector

Microsoft Warns of North Korean Group Citrine Sleet Exploiting Chromium Zero-Day Vulnerability Targeting Cryptocurrency Sector

Recent cybersecurity threats have underscored the vulnerabilities in the cryptocurrency sector, with North Korean cyber group Citrine Sleet exploiting a severe flaw in the Chromium browser. This revelation, disclosed by The post Microsoft Warns of North Korean Group Citrine Sleet Exploiting Chromium...

North Korea-linked APT Citrine Sleet exploit Chrome zero-day to deliver FudModule rootkit

North Korea-linked APT exploited the recently patched Google Chrome zero-day CVE-2024-7971 to deploy the FudModule rootkit. North Korea-linked group Citrine Sleet (aka AppleJeus, Labyrinth Chollima, UNC4736, Hidden Cobra) have exploited the recently patched Google Chrome zero-day CVE-2024-7971(CVSS score 8.8) to deploy the FudModule rootkit, states Microsoft. Microsoft researchers linked with medium confidence the attacks to Citrine […] This ar…

North Korean Hackers Deploy FudModule Rootkit via Chrome Zero-Day Exploit

A recently patched security flaw in Google Chrome and other Chromium web browsers was exploited as a zero-day by North Korean actors in a campaign designed to deliver the FudModule rootkit. The development is indicative of the persistent efforts made by the nation-state adversary, which had made a habit of incorporating rafts of Windows zero-day exploits into its arsenal in recent months.