North Korean Hackers Exploit Chrome Zero-Day Vulnerability

North Korean hackers known as Citrine Sleet exploited a zero-day vulnerability (CVE-2024-7971) in Chromium, targeting cryptocurrency organizations to steal digital assets. The attackers created fake crypto trading platforms to trick victims into downloading malicious software, including the AppleJeus trojan and the FudModule rootkit. This zero-day flaw allowed for remote code execution, enabling the hackers to gain control over infected systems. Microsoft linked this hacking campaign to extensive reconnaissance efforts by Citrine Sleet, which has been connected to North Korea's Bureau 121. Google patched the vulnerability two days after the attack was identified on August 19, 2024. Cybersecurity experts advise users to avoid untrusted websites and utilize robust security software to protect against such sophisticated attacks.