Get a Pentest and security assessment of your IT network.

Cyber Security

Hacking group also used an IE zero-day against security researchers

An Internet Explorer zero-day vulnerability has been discovered used in recent North Korean attacks against security and vulnerability researchers. South Korean cybersecurity firm ENKI reported that Lazarus targeted security researchers on their team with MHT files in this social engineering campaign. The MHT file sent to ENKI contained what was allegedly a Chrome 85 RCE exploit and was named ‘Chrome_85_RCE_Exploit_Code.mht’ ENKI said they have reported the bug to Microsoft and were later contacted by a Microsoft employee requesting more information.

Source: https://www.bleepingcomputer.com/news/security/hacking-group-also-used-an-ie-zero-day-against-security-researchers/

Related posts
Cyber Security

Zip Codes & PII: Are They Personal Data?

Cyber Security

Zero-Day Vulnerabilities: User Defence Guide

Cyber Security

Zero Knowledge Voting with Trusted Server

Cyber Security

ZeroNet: 51% Attack Risks & Mitigation