The North Korean risk group APT37 was in a position to exploit a zero-day vulnerability in Web Explorer to deploy malware-laden paperwork as a part of its ongoing marketing campaign concentrating on customers in South Korea, together with defectors, journalists and human rights teams.
Google’s Risk Evaluation Group (TAG) found the zero-day flaw in Web Explorer’s JScript engine in late October, tracked as CVE-2022-41128, and is now reporting that Microsoft was responsive and launched relevant fixes.
To lure potential victims, the malicious paperwork referenced the lethal crowd crushing incident in Seoul that occurred throughout Halloween celebrations on Oct. 29.
“This incident was broadly reported and the decoy takes benefit of the widespread public curiosity within the accident,” the TAG staff reported. “It isn’t not the primary time APT37 used Web Explorer 0-day exploits to focus on customers.”
Supply : https://information.google.com/__i/rss/rd/articles/CBMiVWh0dHBzOi8vd3d3LmRhcmtyZWFkaW5nLmNvbS9yZW1vdGUtd29ya2ZvcmNlL2FwdDM3LWludGVybmV0LWV4cGxvcmVyLXplcm8tZGF5LW1hbHdhcmXSAQA?oc=5