Loading...
tr eur-usd
EURO/USD
-0.02%
Euro US Dollar
1,07 TRY
btc
BTC
0.87%
Bitcoin
81.064,28 USDT
eth
ETH
-1.32%
Ethereum
3.141,57 USDT
bch
BCH
-3.08%
Bitcoin Cash
427,58 USDT
xrp
XRP
-2.02%
Ripple
0,58 USDT
ltc
LTC
-1.61%
Litecoin
75,33 USDT
bnb
BNB
-1.51%
Binance Coin
617,87 USDT
sol
SOL
-1.63%
Solana
206,66 USDT
avax
AVAX
-2.21%
Avalanche
31,19 USDT
ada
ADA
-2.12%
Cardano
0,58 USDT
dot
DOT
-3.43%
Poladot
5,06 USDT
doge
DOGE
2.03%
Doge Coin
0,28 USDT
shib
SHIB
-3.19%
Shiba Inu
0,00 USDT
KriptoBoss.com
featured
  1. News
  2. NFT News
  3. Lazarus Group Targets Chrome Vulnerability in NFT Game Attack

Lazarus Group Targets Chrome Vulnerability in NFT Game Attack

Share

Share This Post

or copy the link

North Korean Hackers Exploit Zero-Day Chrome Vulnerability through Fake Blockchain Game

The Deceptive Game Scheme

A Clever Ploy by Hackers

A group of North Korean hackers, known as the Lazarus Group, managed to exploit a zero-day vulnerability in Google’s Chrome browser by luring users through a fake blockchain-based game. The multiplayer online battle arena game, named DeTankZone or DeTankWar, enticed users with the promise of non-fungible tokens (NFTs) and worldwide competition. Despite appearing fully playable, the game was a facade to deploy spyware that stole wallet credentials.

The Malicious Malware

A Significant Security Breach

The hackers utilized a type confusion bug in the V8 JavaScript engine, complemented by malware named Manuscrypt, to target unsuspecting users accessing the game website. This marked the seventh zero-day vulnerability discovered in Chrome leading up to mid-May 2024. Kaspersky Labs’ principal security expert, Boris Larin, underscored the gravity of the cyber campaign, hinting at potentially severe ramifications for users and businesses globally.

North Korea’s Affinity for Crypto

A Troubling Trend

Zero-day vulnerabilities like the one exploited by the Lazarus Group can catch vendors off guard, delaying the release of patches. In this case, Google took 12 days to address the vulnerability, emphasizing the persistent threat posed by cyberattacks. This incident follows another instance where a different North Korean hacker group leveraged a zero-day Chrome vulnerability to target cryptocurrency holders earlier in the year, underscoring the country’s keen interest in crypto-related cyber activities.

Notoriously, the Lazarus Group has engaged in extensive cryptocurrency money laundering activities, washing over $200 million from 25 hacks between 2020 and 2023, as documented by crypto crime watchdog ZachXBT. The group was also implicated in the high-profile Ronin Bridge attack in 2022, which yielded crypto assets exceeding $600 million. A report from US cybersecurity firm Recorded Future highlighted the staggering scale of cryptocurrency theft by North Korean hackers, estimating a total haul of over $3 billion between 2017 and 2023.

0
i_like
I like
0
dikkatimi_ekti
Dikkatimi Çekti
0
do_ru_bilgi
Doğru Bilgi
0
e_siz_bilgi
Eşsiz Bilgi
0
alk_l_yorum
Alkışlıyorum
0
sevdim
Sevdim
Lazarus Group Targets Chrome Vulnerability in NFT Game Attack
Comment
Disclaimer:

The information in the article is for informational purposes only. It does not constitute any investment advice. The author and CryptoBlockNews.com are not responsible for your profits or losses arising from your investments. Investment is ultimately based on many foundations such as knowledge, accumulation, experience, research and personal decisions.
ADS Banner

Your email address will not be published. Required fields are marked *

ADS Banner