[North Korean hackers use Chrome zero-day vulnerability to attack cryptocurrency users] Golden Finance reported that Microsoft cybersecurity researchers discovered a zero-day vulnerability in the Chromium engine, which provides support for browsers such as Chrome. This vulnerability was exploited by a North Korean hacker group called Citrine Sleet, specifically targeting cryptocurrency users. Citrine Sleet used a rootkit malware called FudModule to create a fake cryptocurrency trading platform website to trick users into downloading malware or weaponized crypto wallets, thereby gaining remote code execution permissions and stealing victims' crypto assets. This vulnerability was fixed on August 21, and users need to update their browsers as soon as possible to ensure safety. This is the third Chromium zero-day vulnerability to be exploited this year. Previously, Citrine Sleet had also impersonated exchange employees, spread files containing malicious code on Telegram, and attacked cryptocurrency investment startups. Users should be vigilant and avoid downloading unknown files or clicking on suspicious links.
Explore the latest crypto news
⚡️ Be a part of the latests discussions in crypto
💬 Interact with your favorite creators
👍 Enjoy content that interests you
Email / Phone number