Google: We stopped these hackers who were targeting job hunters and crypto firms

Google has detailed its work to thwart not one but two North Korean hacking groups using a Chrome zero-day bug.

Google patched the bug in February but it was being exploited a month earlier. At the time, Google said it knew of reports that hackers were exploiting the Chrome bug CVE-2022-0609. The US Cybersecurity and Infrastructure Security Agency (CISA) mandated federal agencies to patch the Chrome bug in February. Google’s Threat Analyst Group (TAG) says the exploit kit was being actively deployed from January 4, 2022. 

ZDNet Recommends

According to Google, the North Korean hacking groups who were using this exploit are linked to Lazarus, the North Korean hacking group accused of both the Sony Pictures hack and massive theft via an attack on the SWIFT international bank-messaging system. 

SEE: This sneaky type of phishing is growing fast because hackers are seeing big paydays

These groups’ work have been referenced by researchers at other cybersecurity firms as Operation Dream Job and Operation AppleJeus.

“We suspect that these groups work for the same entity with a shared supply chain, hence the use of the same exploit kit, but each operate with a different mission set and deploy different techniques.

Read More: https://www.zdnet.com/article/google-we-stopped-these-hackers-who-were-targeting-job-hunters-and-crypto-firms/#ftag=RSSbaffb68