Google Chrome flaw used by North Korean hackers closed

La falla di Google Chrome utilizzata dagli hacker nordcoreani è stata chiusa thumbnail

Kiev, Ukraine – January 12, 2016:New Google logotype printed on paper, cut and placed on old wood.Google is USA multinational corporation specializing in Internet-related services

They emerge new details on the case of the Google Chrome flaw used by North Korean hacker groups to initiate a series of cyber attacks. According to the latest updates on the matter, the flaw has been used for at least due gruppi (Operation Dream Job e Operation Applejeus) with close ties to North Korea. The two groups used the same Google Chrome flaw that was closed recently, preventing further attempts of use by the same groups or other hackers.

Google has confirmed closure of the Chrome flaw

The Google Chrome flaw was closed with a patch released on February 14th. The first attacks using this flaw were recorded in early January. Google has revealed in these hours that the two groups have used different approaches to exploit the Google browser flaw.

Different groups for different targets

The target of the attacks was also different. The Operation Dream Job group has targeted individual users, formerly employed by large companies, who have received tempting (and bogus) job offers. Operation Applejeus, instead, it focused on individuals linked to fintech and cryptocurrency businesses.

Both groups managed to cover up the traces of the attacks making it difficult for the security teams to work, both in terms of identifying and preventing attacks. However, closing the Google browser flaw should have permanently blocked the attacks.