Government-backed hackers based in North Korea target individual security researchers by a number of means, including a “novel social engineering method,” reports Google’s Threat Analysis Group. The campaign has reportedly been running for several months and appears worryingly to exploit unpatched Windows 10 and Chrome vulnerabilities.

While Google doesn’t say exactly what the hacking campaign’s goal is, it does state that the goals work on “vulnerability research and development.” This suggests that the attackers may be trying to learn more about non-public vulnerabilities that they can use in future government-sponsored attacks.

According to Google, the hackers set up a cybersecurity blog and a number of Twitter accounts to build and strengthen credibility while interacting with potential targets. The blog focused on writing down vulnerabilities that …



Source link

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.