Today > | 5 Medium | 2 Low vulnerabilities   -   You can now download lists of IOCs here!

North Korean threat actor Citrine Sleet exploiting Chromium zero-day

Sept. 2, 2024, 9:12 p.m.

Description

Microsoft identified a North Korean threat actor exploiting a zero-day vulnerability in Chromium, now identified as CVE-2024-7971, to gain remote code execution (RCE). Microsoft assess with high confidence that the observed exploitation of CVE-2024-7971 can be attributed to a North Korean threat actor targeting the cryptocurrency sector for financial gain.

Date

Published: Sept. 2, 2024, 8:46 p.m.

Created: Sept. 2, 2024, 8:46 p.m.

Modified: Sept. 2, 2024, 9:12 p.m.

Indicators

weinsteinfrog.com

voyagorclub.space

Attack Patterns

Kaolin

Citrine Sleet

T1014

T1176

T1496

T1036

T1553

T1195

T1068

CVE-2024-7971

CVE-2024-38193

CVE-2024-38106

CVE-2024-5274

CVE-2024-4947

CVE-2023-42793

CVE-2024-21338

Additional Informations

Gaming

Investment

Cryptocurrency

Technology

Financial

Government