![\"\"](\"\/\/www.iser-br.com\/Themes\/Release\/images\/responsive\/ettelecom-default.jpg\")
The malicious extension by the hacker group titled 'SharpTongue<\/a>' is capable of stealing email content from Gmail<\/a> and AOL<\/a>, according to cybersecurity<\/a> firm Volexity<\/a>.
\"This actor is believed to be North Korean in origin and is often publicly referred to under the name Kimsuky. The definition of which threat activity comprises Kimsuky is a matter of debate among threat intelligence analysts,\" the cybersecurity researchers said in a statement.
SharpTongue is targeting and victimising individuals working for organisations in the United States, Europe and South Korea who work on topics involving North Korea, nuclear issues, weapons systems, and other matters of strategic interest to North Korea.
Within the last year, Volexity has responded to multiple incidents involving SharpTongue and, in most cases, has discovered a malicious Google Chrome or Microsoft Edge extension dubbed as 'SHARPEXT<\/a>'.
\"Since its discovery, the extension has evolved and is currently at version 3.0, based on the internal versioning system. It supports three web browsers and theft of mail from both Gmail and AOL webmail,\" the researchers informed.
By stealing email data in the context of a user's already-logged-in session, the attack is hidden from the email provider, making detection very challenging.
Similarly, the way in which the extension works means suspicious activity would not be logged in a user's email \"account activity\" status page, were they to review it, the cybersecurity firm noted.
<\/body>","next_sibling":[{"msid":93248673,"title":"PC shipments, chip sales growth face record slump this year: Report","entity_type":"ARTICLE","link":"\/news\/pc-shipments-chip-sales-growth-face-record-slump-this-year-report\/93248673","category_name":null,"category_name_seo":"telecomnews"}],"related_content":[],"msid":93248750,"entity_type":"ARTICLE","title":"Hackers using malicious Gmail, Microsoft Edge extension to spy on emails","synopsis":"The malicious extension by the hacker group titled 'SharpTongue' is capable of stealing email content from Gmail and AOL, according to cybersecurity firm Volexity.","titleseo":"telecomnews\/hackers-using-malicious-gmail-microsoft-edge-extension-to-spy-on-emails","status":"ACTIVE","authors":[],"analytics":{"comments":0,"views":258,"shares":0,"engagementtimems":1082000},"Alttitle":{"minfo":""},"artag":"IANS","artdate":"2022-07-31 13:01:11","lastupd":"2022-07-31 13:04:34","breadcrumbTags":["gmail","microsoft edge","volexity","aol","SharpTongue","google chrome","sharpext","internet","cybersecurity"],"secinfo":{"seolocation":"telecomnews\/hackers-using-malicious-gmail-microsoft-edge-extension-to-spy-on-emails"}}" data-authors="[" "]" data-category-name="" data-category_id="" data-date="2022-07-31" data-index="article_1">
- Telecom乐动扑克News
- 1分钟读
黑客使用恶意Gmail,微软边缘扩展监视电子邮件
恶意黑客集团扩展名为“SharpTongue”能够窃取从Gmail电子邮件内容和美国在线(AOL),根据网络安全公司Volexity。
读到
恶意黑客集团扩展名为“SharpTongue“能够窃取电子邮件的内容Gmail和美国在线,根据网络安全公司Volexity。
“这演员被认为是朝鲜在起源和经常公开被称为Kimsuky名称。威胁活动包括Kimsuky的定义是一个有争议的问题在威胁情报分析员,“网络安全研究人员在一份声明中说。
SharpTongue目标,使个人工作组织在美国,欧洲和韩国工作话题涉及朝鲜核问题,武器系统,向北韩和其他重要的战略利益。
在去年,Volexity应对多个事件涉及SharpTongue和,在大多数情况下,发现了一个恶意的Google Chrome或微软边缘扩展名为“SHARPEXT”。
“发现以来,扩展发展,目前在3.0版本,基于内部版本控制系统。它支持三个web浏览器和盗窃的邮件从Gmail和AOL邮箱,”研究人员通知。
通过窃取电子邮件数据用户的上下文中already-logged-in会话,攻击是隐藏在电子邮件提供者,使检测非常具有挑战性。
同样,工作意味着可疑活动的方式扩展不会登录用户的电子邮件账户活动”状态页,他们审查,网络安全公司指出。
评论
现在评论 阅读评论(1)所有评论
找到这个评论进攻?
下面选择你的理由并单击submit按钮。这将提醒我们的版主采取行动