APT37 Uses Internet Explorer Zero-Day To Spread Malware

North Korean threat group APT37 was able to exploit an Internet Explorer zero-day vulnerability to deploy documents loaded with malware as part of its ongoing campaign targeting users in South Korea, including defectors, journalists, and human rights groups.

Google’s Threat Analysis Group (TAG) found the zero-day flaw in the Internet Explorer JScript engine in late October, tracked under CVE-2022-41128, and now reports that Microsoft was responsive and has issued applicable patches.

To lure in potential victims, the malicious documents referenced the deadly crowd crushing incident in Seoul that happened during Halloween celebrations on Oct. 29.

“This incident was widely reported on, and the lure takes advantage of widespread public interest in the accident,” the TAG team reported. “This is not not the first time APT37 has used Internet Explorer 0-day exploits to target users.”

Keep up with the latest cybersecurity threats, newly-discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

SEO Powered Content & PR Distribution. Get Amplified Today.
Platoblockchain. Web3 Metaverse Intelligence. Knowledge Amplified. Access Here.
Source: https://www.darkreading.com/remote-workforce/apt37-internet-explorer-zero-day-malware

Generative Data Intelligence

APT37 Uses Internet Explorer Zero-Day to Spread Malware

Top Tips for Keeping Your AI Startup’s IT Staff Inspired

Top Tips for Keeping Your AI Startup’s IT Staff Inspired

Latest Intelligence

How to get and use the Rescue Hook in Content Warning

How to get MetaCoins (MC) in Content Warning

Qatar Airways Cargo sets new standards with launch of Advanced Animal Centre

When Is the Next Valorant Map Release Date? » TalkEsport

WestJet Group CEO unveils growth strategy in Halifax amidst return of transatlantic connectivity

Balatro’s first big balance patch fiddles with Fibonacci and makes a mod to Odd Todd