North Korean hacker group Lazarus exploited a fake NFT game to hack Chrome and steal cryptocurrency wallets. Using a previously unknown vulnerability, they installed spyware directly from the game’s website, even if users didn’t download it.
Play-to-lose
The game, called DeTankZone (or DeTankWar), used NFT tanks for online battles. It was promoted via LinkedIn and X but turned out to be a trap for installing malware. The hackers cloned an existing game, DeFiTankLand, attracting many users.
Microsoft Security researchers discovered the attack in February and reported the vulnerability to Google, which released a patch. It’s been confirmed that the attackers used a previously undiscovered vulnerability in the V8 JavaScript engine. This was the seventh time a Chrome breach had been used to steal cryptocurrency in 2024 by mid-May.