Security News > 2021 > March > Google: North Korean hackers target security researchers again
Google's Threat Analysis Group says that North Korean government-sponsored hackers are once again targeting security researchers using fake Twitter and LinkedIn social media accounts.
The hackers also created a website for a fake company named SecuriElite and supposedly offering offensive security services as the Google security team focused on hunting down state-backed hackers discovered on March 17.
Just as in the attacks detected during January 2021, this site was also hosting the attackers' PGP public key, which was used as bait to infect security researchers with malware after triggering a browser exploit on opening the page.
In January, North Korean state hackers tracked as the Lazarus Group targeted security researchers in social engineering attacks using elaborate fake "Security researcher" social media personas.
Some researchers using fully patched Windows 10 computers and running the latest Google Chrome version were infected in the attacks, indicating that the hackers were using zero-day vulnerabilities to compromise the targets' devices.
An additional Internet Explorer zero-day was discovered by South Korean cybersecurity firm ENKI after failed attacks on their security researchers.
News URL
Related news
- New details reveal how hackers hijacked 35 Google Chrome extensions (source)
- Researchers Uncover Major Security Flaw in Illumina iSeq 100 DNA Sequencers (source)
- Google Project Zero Researcher Uncovers Zero-Click Exploit Targeting Samsung Devices (source)
- Google Cloud Researchers Uncover Flaws in Rsync File Synchronization Tool (source)
- Hackers use Google Search ads to steal Google Ads accounts (source)
- Trump 'waved a white flag to Chinese hackers' as Homeland Security axed cyber advisory boards (source)
- Google says hackers abuse Gemini AI to empower their attacks (source)
- Google Patches 47 Android Security Flaws, Including Actively Exploited CVE-2024-53104 (source)
- Google patches odd Android kernel security bug amid signs of targeted exploitation (source)
- North Korean Hackers Deploy FERRET Malware via Fake Job Interviews on macOS (source)