DPRK hacking group targets security researchers with Chrome exploit

DPRK group named 'Zinc' or 'Lazarus' has been targeting vulnerability researchers according to Microsoft. According to Microsoft research, the group operated by building fake security researchers personas on Twitter to gather themselves a reputation and to collaborate with the actual security researchers to infect their devices with backdoor malware. The infection methods include previously reported fake Visual Studio project, as well as fake blog links that contained an exploit kit using "0-day or patch gap exploits". Read more...