Kimsuky Using TRANSLATEXT Chrome Extension to Steal Sensitive Data

Kimsuky Using TRANSLATEXT Chrome Extension to Steal Sensitive Data

/in

The North Korea-linked threat actor known as Kimsuky has been linked to the use of a new malicious Google Chrome extension that’s designed to steal sensitive information as part of an ongoing intelligence collection effort.
Zscaler ThreatLabz, which observed the activity in early March 2024, has codenamed the extension TRANSLATEXT, highlighting its ability to gather email addresses, usernames,

The Hacker News – ​Read More

New Unfurling Hemlock Threat Actor Floods Systems with MalwareCISA’s Flags Memory-Unsafe Code in Major Open Source ProjectsCISA’s Flags Memory-Unsafe Code in Major Open Source Projects