Security News > 2024 > August > North Korean hackers exploit Chrome zero-day to deploy rootkit

North Korean hackers exploit Chrome zero-day to deploy rootkit

2024-08-30 17:04

North Korean hackers have exploited a recently patched Google Chrome zero-day (CVE-2024-7971) to deploy the FudModule rootkit after gaining SYSTEM privileges using a Windows Kernel exploit. [...]

News URL

https://www.bleepingcomputer.com/news/security/north-korean-hackers-exploit-chrome-zero-day-to-deploy-rootkit/

#chrome #exploit #hacker #northkorean #zeroday #CVE-2024-7971

Related news

Zero-Day Alert: Google Releases Chrome Patch for Exploit Used in Russian Espionage Attacks (source)
Hackers exploit VMware ESXi, Microsoft SharePoint zero-days at Pwn2Own (source)
Google fixes Chrome zero-day exploited in espionage campaign (source)
Google fixes exploited Chrome sandbox bypass zero-day (CVE-2025-2783) (source)
EncryptHub Exploits Windows Zero-Day to Deploy Rhadamanthys and StealC Malware (source)
Top 3 MS Office Exploits Hackers Use in 2025 – Stay Alert! (source)
Mozilla Patches Critical Firefox Bug Similar to Chrome’s Recent Zero-Day Vulnerability (source)
After Chrome patches zero-day used to target Russians, Firefox splats similar bug (source)
Hackers Exploit WordPress mu-Plugins to Inject Spam and Hijack Site Images (source)
North Korean hackers adopt ClickFix attacks to target crypto firms (source)

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2024-08-21	CVE-2024-7971	Type Confusion vulnerability in multiple products Type confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to exploit heap corruption via a crafted HTML page. network low complexity google microsoft CWE-843 critical	9.6

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.