A zero-day is an unpatched software flaw unknown to the developer that can be exploited by hackers. According to Google, such vulnerabilities are “particularly dangerous and have a high rate of success”.
Google’s Threat Analysis Group (TAG) announced in a press release on Thursday that an unidentified group of hackers capitalized five zero-day vulnerabilities over 2019.
The company said that the majority of victims targeted by the hackers were “from North Korea or individuals who worked on North Korea-related issues”.
Gidwani noted that the zero-day flaws affected Android, Chrome, iOS, Internet Explorer and Windows operating systems.
Although Google refused to speculate who might be responsible for these attacks, the Russian security firm Kaspersky associated Google’s discoveries with DarkHotel, a hacker group allegedly targeting North Koreans in the past and suspected of working for the South Korean government, according to WIRED.
Hours following the TAG report, Kaspersky reportedly matched two of the vulnerabilities — one in Windows, one in Internet Explorer — with those it earlier linked to DarkHotel. Previously, the security firm detected those bugs exploited to plant known DarkHotel malware on the devices of their customers.
Raiu noted that DarkHotel are “interested in getting information such as documents, emails, pretty much any bit of data they can from these targets”.
Sourse: sputniknews.com