Topics Security Off-Prem On-Prem Software Offbeat Vendor Voice Vendor Voice Resources Evil, pure and simple
North Korea has hit a new low, using the death of over 150 people to exploit a zero-day flaw in Internet Explorer. Google’s Threat Analysis Group on Wednesday spotted the flaw, CVE-2022-41128, an RCE bug in the JScript9 scripting language engine. Microsoft fixed it in November 2022’s patch dump. But Google says the North Korean government-backed actors known as APT37 created an exploit for the flaw and embedded it in a document titled ““221031 Seoul Yongsan Itaewon accident response situ...