Security News > 2022 > December > North Korea hits new low by using Seoul Halloween tragedy to exploit Internet Explorer zero-day
North Korea has hit a new low, using the death of over 150 people to exploit a zero-day flaw in Internet Explorer.
South Korea declared a week of national mourning after the incident.
Because Office renders this HTML content using Internet Explorer.
Internet Explorer has of course been deprecated but is still present on many PCs. Quite possibly more PCs in South Korea than elsewhere given some of the nation's government websites relied on legacy Microsoft browser technologies until 2021.
North Korea stands accused of using cyber-ops to steal data, money, and whatever else it can get its hands on.
Far from atypical for North Korea's government, which those of you with a strong stomach can learn about in horrifying detail in this searing United Nations report that details the regime's excesses.
News URL
https://go.theregister.com/feed/www.theregister.com/2022/12/08/north_korea_seoul_tragedy_exploit/
Related news
- Mitel MiCollab zero-day flaw gets proof-of-concept exploit (source)
- Mitel MiCollab zero-day and PoC exploit unveiled (source)
- North Korea's fake IT worker scam hauled in at least $88M over six years (source)
- New Mirai botnet targets industrial routers with zero-day exploits (source)
- Zero-day exploits plague Ivanti Connect Secure appliances for second year running (source)
- Nominet probes network intrusion linked to Ivanti zero-day exploit (source)
- US govt says North Korea stole over $659 million in crypto last year (source)
- Crypto klepto North Korea stole $659M over just 5 heists last year (source)