North Korean hackers used an IE vulnerability to target South Koreans after Halloween tragedy

In the aftermath of the Itaewon Halloween crowd crush that killed at least 158 people, North Korea’s APT37 state-sponsored hacking group took advantage of a previously unknown Internet Explorer vulnerability to install malware on the devices of South Koreans who were trying to find out about the tragedy, according to Google’s Threat Analysis Group. The team became aware of the recent attack on October 31st after multiple South Koreans uploaded a malicious Microsoft Office document to the company’s VirusTotal tool.

APT37 took advantage of national interest in the Itaewon tragedy by referencing the event in an official-looking document. Once someone opened the doc on their device, it would download

→ Continue reading at Engadget

Similar Articles


Most Popular

'Haven't seen anything like it': Tuesday crime spree spreads from Milton to Renton, Kent

The spree started with a carjacking, then that stolen car was used in multiple armed robberies. No suspects have been identified. RENTON, Wash....

Brett Maher’s 1st extra point blocked vs. 49ers … but it might have missed, anyway

The kicking woes continue for the Dallas Cowboys. Dallas advanced to the Divisional Round with a victory over the Tampa Bay Buccaneers, but...

Afghan soldier seeks asylum after arrest at US-Mexico border

HOUSTON (AP) — Abdul Wasi Safi kept documents detailing his time as an Afghan soldier who worked with the U.S. military close to him...