Reportedly, North Korean hackers used an unknown bug in Chrome to steal cryptocurrencies

36

A new report noted that a hacking group linked to North Korea has been actively targeting Chrome crypto users to steal funds, taking advantage of an unknown hidden bug in Chrome.

North Korea is known for its backing of hackers. The state government of this country directly supports hackers to steal funds. Many reports confirmed that North Korea used the stolen crypto funds for its weapons and missile programs, in order to show dominance against all enemy countries.

On August 30, 2024, Microsoft’s cybersecurity researchers discovered the hackers’ activities from August 19. The hackers are linked to Citrine Sleet, a group known for targeting the crypto industry and financial service providers.

Microsoft researchers reported that hackers exploited a zero-day vulnerability in Chromium, the engine used by Chrome and Microsoft’s Edge browser. This means Google, the software maker, was unaware of the bug at the time of exploitation. According to TechCrunch, Google had no time to fix the bug before it was exploited. However, Google managed to fix the bug within two days, on August 21st.

Korean hackers & crypto theft

The cryptocurrency sector has become a major target for North Korean hackers in recent years. The United Nations Security Council estimates that $3 billion in crypto was stolen by North Korean hackers between 2017 and 2023. These cybercriminals have become increasingly sophisticated, often using advanced techniques to exploit vulnerabilities in crypto exchanges and financial platforms.

North Korean hacking groups, such as the infamous Lazarus Group, have been linked to numerous high-profile crypto heists, often using the stolen funds to circumvent international sanctions and fund the country’s regime. The stolen cryptocurrency is typically laundered through various channels, making it difficult to trace and recover. Their increasing activity poses a significant threat to the global financial system and has prompted stronger security measures across the crypto industry.

Read also: WazirX Seeks Moratorium In Singapore Amid Controversy: Indian Crypto Community Voices Concerns