A hacker group is using its signature trojan malware to infect users of web browsers with Chromium engines.
Microsoft cybersecurity researchers identified a zero-day vulnerability in Chromium, the engine that powers the Chrome web browser and others, that had been exploited by the North Korean hacker group they call Citrine Sleet. The vulnerability was patched on Aug. 21, so it is important for users to update their browsers.
Microsoft identified Citrine Sleet with “medium confidence.” The group is known to target the cryptocurrency sector and is the developer of the AppleJeus trojan malware that has also been used by the Lazarus Group of hackers.
Microsoft has notified targeted and compromised customers, but it did not say how many customers were affected. This was the third exploited vulnerability of this type that has been patched in Chromium this year. Google, the owner of the Chromium engine, patched the vulnerability two days after it was reported.