While North Korea has been busy fighting with President Trump and negotiating with South Korea to participate in the Winter Olympics, they’ve somehow found the time stay active with the cyber criminal community.
Adobe Flash Gets Hacked
Adobe has finally patched a fatal flaw in its Flash Player that North Korea hackers have been believed to be exploiting since November. On January 31st 2018, the South Korean Computer Emergency Response Team (CERT) issued a warning detailing the use of the vulnerability in the wild.The South Korean government thinks hackers associated with the Pyongyang government in North Korea were using the vulnerability to launch attacks on researchers in South Korea. The use after free (UAF) vulnerability CVE-2018-4878 allows an attacker to execute code on a victim system and was believed to be distributed via Microsoft Office documents embedded with malicious Flash content.
Stay active, stay educated, and stay vigilant to keep your organization protected from similar vulnerabilities.