25/10/2024 Lazarus Group exploited Chrome vulnerability with fake NFT game

The North Koreans invested great effort in creating and promoting a game that apparently drained users’ wallets.

Lazarus Group exploited Chrome vulnerability with fake NFT game

The North Koreans invested great effort in creating and promoting a game that apparently drained users’ wallets.

The North Korean Lazarus Group of hackers used a fake blockchain-based game to exploit a zero-day vulnerability in Google’s Chrome browser and install spyware that stole wallet credentials. Kaspersky Labs analysts noticed the exploit in May and reported it to Google, which has fixed it.

NBA legend Shaquille O’Neal signs $11M Astrals NFT settlement
OpenSea users drop securities suit, Whales drive Q3 NFT comeback: Nifty Newsletter
Italian Football Captain Giorgio Chiellini Releases NFT Collection

Play at a big risk

The hacker’s play-to-earn multiplayer online battle arena game was fully playable and had been promoted on LinkedIn and X. The game was called DeTankZone or DeTankWar and used non-fungible tokens (NFTs) as tanks in a worldwide competition.

Users were infected from the website, even if they did not download the game. The hackers modeled the game on the existing DeFiTankLand.

The hackersusedmalware called Manuscrypt followed by a previously unknown “type confusion bug in the V8 JavaScript engine.” It was the seventh zero-day vulnerability found in Chrome in 2024 through mid-May.

Kaspersky principal security expert Boris Larin said:

“The significant effort invested in this campaign suggests they had ambitious plans, and the actual impact could be much broader, potentially affecting users and businesses worldwide.”

The fake game wasnoticedby Microsoft Security in February, though the hackers removed the exploit from the website before Kaspersky could analyze it. The lab informed Google of it anyway and Google fixed the vulnerability in Chrome before the hackers could use it again.

Screenshot from Lazarus Group’s fake game. Source:SecureList

North Korea loves crypto

Zero-day vulnerabilities take the vendor by surprise and there is no ready patch for them. It took Google 12 days to patch the vulnerability in question.

Another North Korean hacker group harnessed a different zero-day vulnerability in Chrome to target crypto holders earlier this year.

Source:Microsoft Threat Intelligence

Lazarus Group is fond of crypto. Between 2020 and 2023, itlaundered over $200 millionin crypto from 25 hacks, according to crypto crime watcher ZachXBT.

The United States Treasury Department also alleged Lazarus Groupto be behind the attack onRonin Bridge that netted crypto worth over $600 million in 2022.

US cybersecurity firm Recorded Future found that North Korean hackers as a wholestole over $3 billion in crypto between 2017 and 2023.

Arts

https://cointelegraph.com/news/north-korean-lazarus-group-chrome-zero-day-nft-game-hack

Interesting NFTs
#56464
By OthersideDeployer
Who is Satoshi Nakamoto?
"Who is Satoshi Nakamoto?" is dedicated to the mysterious creation of Bitcoin, and acts as the showcase artwork within Javier ArrĂ©s’ exploratory series "Bitcoin, The Origin". "Who is the creator of Bitcoin?" The artist, ArrĂ©s, explores this question, and the feelings of doubt and mystery that accompany it, through his unique artistic language. An unknown, an enigma. It should be remembered that the name Satoshi Nakamoto is a pseudonym of Bitcoin's author or authors and gives us little insight into its true creator. For this Visual Toy, ArrĂ©s uses the signature claw machine, his famous half-operation, to symbolize our collective ignorance and unconfirmed belief: As soon as it has the stuffed animal within its grasp and appears to have solved the puzzle, the animal escapes again, and again. At present, there are three more public and studied possibilities who are either believed to be the creators of the currency or who directly claim the creation of it. It may be all or none of them, yet these three personalities leave us clues which are an important part of this interesting enigma. For this moment, it will remain unknown... In this artwork, ArrĂ©s elevates the claw machine from the apparatus, to an iconic pop art object serving as an important element to the Bitcoin creation narrative. Action is everywhere, with each movement serving an iconographical or metaphorical purpose related directly to cryptocurrency: Various ups and downs, roller coasters, mining points, robot, coins and more speak to a sense of hope, risk, mystery, randomness and possibility of pay out. Hundreds of manically thought out details make this creation one of the artist’s most complex Visual Toys to date. ------- "Bitcoin, The Origin" is a set of two Visual Toys, titled "Who is Satoshi Nakamoto" and "It’s Alive!" which reflect and explore the mystery and enigmas behind the creation of Bitcoin. ArrĂ©s presents these proposals to us in his signature style, full of iconography, fantasy, maniacal animations and a panoply of details (both subtle and overt) which simultaneously fascinate, hypnotize, and narrate this historical milestone through the singular vision of the artist. Through this series, ArrĂ©s freezes a crucial moment of cryptocurrency history, taking a still photo under his vision and turning it into two unique crypto artworks. ---- More info about Javier ArrĂ©s: https://javierarres.com/about.html
Lim Hedra #1/20
⏣
Moony
Heyo! I'm Moony. I enjoy tricking babies, fighting for the people, and licking doorknobs. I am 0% gremlin, 51% Spin Instructor , and otherwise bad at math. We're so fur-tunate to have found each other!
Not Forgotten, But Gone
Not Forgotten, But Gone by WhIsBe