"Dual North Korean Hacking Efforts Found Attacking Google Chrome Vulnerability"

Google's Threat Analysis Group discovered that two distinct sets of North Korean hackers were exploiting the same remote code execution vulnerability in the Chrome web browser.  One set of North Korean hackers targeted news media and IT companies, and the other aimed at cryptocurrency and fintech organizations.  The vulnerability that was being targeted was patched on February 14th.  If the vulnerability was exploited, it would have allowed the hackers to deliver malware packages in hidden iframes, both on websites they owned and websites they had compromised.  The researchers stated that the two groups had different aims and used different techniques, but they used the same exploit kit, meaning they likely worked for the same entity with a shared supply chain.

CyberScoop reports: "Dual North Korean Hacking Efforts Found Attacking Google Chrome Vulnerability"