NxtVertexNxtVertex

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    What's Hot

    Why is a data breach a big risk for crypto traders, and how can they avoid it?

    December 23, 2022

    Betbeard’s Best Non-Stop Casino 2023

    December 23, 2022

    PS5 Pro vs. PS5 Slim release likely in 2023: While a tipster’s PlayStation 5 hardware roadmap points to the latter, Sony official comments fuel anticipation for the former.

    December 23, 2022
    Facebook Twitter Instagram
    • Tech
    • Gadgets
    • Mobiles
    Facebook Twitter Instagram Pinterest VKontakte
    NxtVertexNxtVertex
    • Home
    • Tech

      Betbeard’s Best Non-Stop Casino 2023

      December 23, 2022

      Microsoft and Netflix are rumored to join as streaming competition heats up.

      December 23, 2022

      We just learned that hackers stole encrypted LastPass password vaults.

      December 23, 2022

      Shipments of AR and VR are down, but IDC anticipates rise by 2023.

      December 22, 2022

      Autonomous P-Flap ornithopter perches like a bird using a claw.

      December 21, 2022
    • Mobiles

      With a better display, the Xiaomi Pad 6 Pro might challenge the iPad Pro.

      December 22, 2022

      Galaxy Z Fold 3 and Flip 3 prices plummet to just $585 in a refurb sale.

      December 20, 2022

      The specifications for the OnePlus Nord 3 have been announced, and they’re quite remarkable.

      March 21, 2022

      On BIS, a Redmi 10 Prime Plus appears, which could be a rebranded Note 11E 5G.

      March 21, 2022

      Realme’s insatiable appetite is expanding faster than anyone else’s, and it’s aiming squarely at Europe.

      March 18, 2022
    • Gaming
    • Gadgets
    • Crypto
    • How To
    • Contact
    NxtVertexNxtVertex
    Home»Crypto»Google: We were able to block these hackers from targeting job seekers and crypto companies.
    Crypto

    Google: We were able to block these hackers from targeting job seekers and crypto companies.

    North Korea's efforts to structure its offensive cyber capabilities within the government are detailed by Google and Mandiant.
    NxtvertexBy NxtvertexMarch 25, 2022Updated:March 25, 2022No Comments4 Mins Read
    Facebook Twitter Pinterest LinkedIn Tumblr Email
    Image Credits [Verdict]
    Share
    Facebook Twitter LinkedIn Pinterest Email

    Google has outlined its efforts to stop two North Korean hacking groups from exploiting a Chrome zero-day vulnerability.

    The problem was corrected by Google in February, but it had already been exploited for a month. At the time, Google stated that it was aware of reports that the Chrome bug CVE-2022-0609 was being exploited by hackers. In February, the US Cybersecurity and Infrastructure Security Agency (CISA) issued a directive requiring federal agencies to patch the Chrome problem. The exploit kit was active from January 4, 2022, according to Google’s Threat Analyst Group (TAG).

    The North Korean hacking groups that used this exploit, according to Google, are tied to Lazarus, the North Korean hacking outfit suspected of both the Sony Pictures hack and significant larceny via an attack on the SWIFT international bank-messaging system.

    Researchers from other cybersecurity businesses have referred to the efforts of these groups as Operation Dream Job and Operation AppleJeus.

    “We believe these groups are part of the same entity with a shared supply chain, which explains why they use the same exploit kit, but they each have their own mission set and employ different techniques.” According to TAG’s Adam Weidemann, “it’s possible that other North Korean government-backed attackers have access to the same exploit kit.”

    “In line with our current disclosure policy, we are providing these details 30 days after the patch release.”

    An exploit kit with various stages and components was used by the attackers. According to the security researchers, the attackers put links to the exploit kit behind hidden iframes that they embedded on both their own and hacked websites.

    According to Google, the group has targeted firms in the news media, technology, cryptocurrency, and financial industries in the United States. It is possible that organizations in other countries were also targeted, according to the report.

    One of the groups, according to Google, targeted 250 employees from ten businesses in the news media, domain registrars, web hosting providers, and software suppliers with false job offers in emails mimicking Disney, Google, and Oracle recruiters. The emails included links to counterfeit versions of Indeed and ZipRecruiter, two popular sites for recruiting tech talent in the United States.

    North Korean hackers affiliated with Lazarus are thought to have stolen about $400 million in cryptocurrencies in 2021, according to blockchain analysis firm Chainalysis. In 2018, a UN panel of experts decided that its cryptocurrency hacks aided North Korea’s ballistic missile development.

    The other gang, according to Google, used the same exploit kit to target over 85 users in the cryptocurrency and financial industries.

    All identified URLs and domains were added to Google’s Safe Browsing service to safeguard consumers from future exploitation, and Google also sent government-backed attacker alerts to all affected Gmail and Workspace users notifying them of the behavior.

    This week, Mandiant, which Google is buying for $5.4 billion, published a fresh report on North Korean hacking. According to the report, North Korea is copying China’s policy of enlisting hacking organizations to work for the government.

    Lab 110, TEMP.Hermit, APT38, Andariel, and Bureau 325 are the Lazarus-linked hacker groups, according to Mandiant. They are part of the Reconnaissance General Bureau, North Korea’s foreign intelligence agency, which includes seven sub-organizations that handle operations, reconnaissance, foreign intelligence, South Korean relations, technology, and support.

    Each gang is focused on a separate industry, gathering information from businesses about geopolitical events or stealing cryptocurrencies to increase revenue.

    “TEMP.Hermit, APT38, and Andariel are most likely Lab 110’s subordinates. According to Mandiant experts, Lab 110 is most likely an extended and rearranged version of “Bureau 121,”

    “The country’s espionage operations are thought to reflect the regime’s immediate concerns and priorities, which are likely currently focused on obtaining financial resources through crypto heists, targeting of media, news, and political entities, information on foreign relations and nuclear information, and a slight decline in the once rampant theft of COVID-19 vaccine research.” Information gathered during these efforts could be utilized to develop or manufacture internal products and strategies, such as vaccines, sanctions mitigations, and finance for the country’s weapons projects, among other things.”

    Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
    Nxtvertex
    • Website

    Related Posts

    Why is a data breach a big risk for crypto traders, and how can they avoid it?

    December 23, 2022

    Betbeard’s Best Non-Stop Casino 2023

    December 23, 2022

    Microsoft and Netflix are rumored to join as streaming competition heats up.

    December 23, 2022

    We just learned that hackers stole encrypted LastPass password vaults.

    December 23, 2022
    Add A Comment

    Leave A Reply Cancel Reply

    Editors Picks

    Betbeard’s Best Non-Stop Casino 2023

    December 23, 2022

    PS5 Pro vs. PS5 Slim release likely in 2023: While a tipster’s PlayStation 5 hardware roadmap points to the latter, Sony official comments fuel anticipation for the former.

    December 23, 2022

    Microsoft and Netflix are rumored to join as streaming competition heats up.

    December 23, 2022

    We just learned that hackers stole encrypted LastPass password vaults.

    December 23, 2022
    Top Reviews
    9.1

    Review: Mi 10 Mobile with Qualcomm Snapdragon 870 Mobile Platform

    By Nxtvertex
    8.9

    Comparison of Mobile Phone Providers: 4G Connectivity & Speed

    By Nxtvertex
    8.9

    Which LED Lights for Nail Salon Safe? Comparison of Major Brands

    By Nxtvertex
    Advertisement
    Demo
    NxtVertex
    Facebook Twitter Instagram Pinterest
    • Home
    • Tech
    • Crypto
    • Gadgets
    • Mobiles
    © 2023 Nxtvertex. All Rights Reserved.

    Type above and press Enter to search. Press Esc to cancel.