Google Warns of Internet Explorer Zero-Day Vulnerability Exploited by ScarCruft Hackers

08-Dec-22

By taking advantage of the recent Halloween crowd crush in Itaewon to lure people into downloading malware, a North Korean threat actor actively targeted South Korean consumers using an Internet Explorer zero-day vulnerability.

The current round of attacks by ScarCruft, also known as APT37, InkySquid, Reaper, and Ricochet Chollima, were discovered by Google Threat Analysis Group researchers Benoît Sevens and Clément Lecigne. In a Thursday analysis, TAG said that the group had “historically targeted South Korean users, North Korean defectors, policymakers, journalists, and human rights advocates.”

[Read More…](Google Warns of Internet Explorer Zero-Day Vulnerability Exploited by ScarCruft Hackers (thehackernews.com))