Lazarus Group Used Fake Blockchain Game to Exploit Zero-Day Vulnerability in Google Chrome-web3.0-php.cn

Home

web3.0

Lazarus Group Used Fake Blockchain Game to Exploit Zero-Day Vulnerability in Google Chrome

Patricia Arquette

Oct 24, 2024 am 09:54 AM

Lazarus Group Chrome vulnerability fake NFT game

The North Korean Lazarus Group of hackers used a fake blockchain-based game to exploit a zero-day vulnerability in Google’s Chrome browser and install spyware

Lazarus Group Used Fake Blockchain Game to Exploit Zero-Day Vulnerability in Google Chrome

North Korean Lazarus Group hackers have exploited a zero-day vulnerability in Google Chrome to install spyware that steals wallet credentials, using a fake blockchain-based game to carry out the attack.

The Lazarus Group’s activities were detected by Kaspersky Labs analysts in May, who reported the exploit to Google. The vulnerability has since been fixed by Google.

Playing at a high risk

The hackers’ game, which was fully playable, was promoted on LinkedIn and X. It was called DeTankZone or DeTankWar and featured tanks represented by non-fungible tokens (NFTs) that competed in a global tournament.

Interestingly, users could get infected from the game’s website even without downloading the game itself. The hackers reportedly modeled the game on the existing DeFiTankLand.

According to the report, the hackers deployed Manuscrypt malware, followed by a previously unseen “type confusion bug in the V8 JavaScript engine.” This marked the seventh zero-day vulnerability found in Chrome in 2024 up to mid-May.

“The fake game was noticed by Microsoft Security back in February. However, by the time Kaspersky was able to look into it, the threat actor had already removed the exploit from the website,” Boris Larin, principal security expert at Kaspersky, told Securelist.

Despite this, the lab went ahead and informed Google about the exploit, and Chrome fixed the vulnerability before the hackers could reintroduce it.

Screenshot from Lazarus Group’s fake game, as shared by SecureList

Related: FBI highlights 6 Bitcoin wallets linked to North Korea, urging crypto exchanges to be vigilant

North Korea has a thing for crypto

Zero-day vulnerabilities are those that a vendor is made aware of for the first time, without any patch being ready for it. In this case, it took Google 12 days to patch the vulnerability in question.

Earlier this year, another zero-day vulnerability in Chrome was exploited by a separate North Korean hacker group to target crypto holders.

As reported by Microsoft Threat Intelligence, Lazarus Group is known to have a strong preference for cryptocurrency. According to crypto crime watcher ZachXBT, the group laundered over $200 million in crypto from 25 hacks between 2020 and 2023.

The United States Treasury Department has also accused Lazarus Group of being behind the 2022 attack on Ronin Bridge, which resulted in the theft of crypto valued at over $600 million.

Over the seven-year period from 2017 to 2023, North Korean hackers stole a total of more than $3 billion in crypto, according to cybersecurity firm Recorded Future.

Magazine: Lazarus Group’s favorite exploit revealed — An analysis of crypto hacks by the notorious group

The above is the detailed content of Lazarus Group Used Fake Blockchain Game to Exploit Zero-Day Vulnerability in Google Chrome. For more information, please follow other related articles on the PHP Chinese website!

Statement

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

Blackrock Pushes Bitcoin Into Spotlight: Could Be Too Risky Not to Own Any in Today's MarketMay 05, 2025 am 11:46 AM

Robbie Mitchnick, head of digital assets at Blackrock, the world's largest asset manager, emphasized during the Token2049 crypto conference that institutional views on bitcoin could dramatically shift

Early Shiba Inu Investors Hit Jackpot—Now Eyes Are on Arctic Pablo CoinMay 05, 2025 am 11:44 AM

We've all heard the story by now—the incredible rise of Shiba Inu. The meme coin that started as a fun, light-hearted alternative to Dogecoin became one of the most talked-about and profitable cryptocurrencies of its time.

Solana (SOL) Price Rebound Holds Above $150 as CME Prepares to Launch XRP FuturesMay 05, 2025 am 11:42 AM

The Solana price rebound is holding above $150 after recent losses, offering signs of recovery.

Ruvi (RUV) Blazes a Trail Through May 2025, Trading at an Impressive $96,856 and Carrying Strong Forecasts of Reaching Anywhere from $250,000 to $700,000 by the End of the YearMay 05, 2025 am 11:40 AM

Ruvi's presale isn't just about speculating; it's about making early gains your reality. Here are examples of its incredible earning potential based on various investment levels:

Dogecoin [DOGE] saw a 33.5% decrease in trading volume in the past 24 hoursMay 05, 2025 am 11:38 AM

DOGE saw a 33.5% decrease in trading volume in the past 24 hours, at the time of writing. This could be a weekend effect, when trading volume tends to fall

Binance Coin (BNB) is Buzzing as it Hovers Around the $600 Mark. Analysts Predict a Potential Bullish Climb.May 05, 2025 am 11:36 AM

This innovative blockchain solution is grabbing attention, offering not just token utility with cutting-edge artificial intelligence but a jaw-dropping VIP presale program

Dogecoin (DOGE) Price Surged 2.3% to Breach the $0.17 ResistanceMay 05, 2025 am 11:34 AM

Dogecoin (DOGE) surged 2.3% over the last 24 hours to breach the $0.17 resistance amid renewed optimism around Bitcoin ETF-driven inflows.

Qubetics (TICS) Is Rewriting Web3 Development — And Its Presale Is About to ExplodeMay 05, 2025 am 11:32 AM

Trying to time the crypto market can feel like chasing shadows—but when the signals line up and the volume starts flowing, it's the weekend picks that often pack the most explosive moves.