Further, a second vulnerability allowed attackers to bypass Google Chromes V8 sandbox protection.
Google patched the sandbox bypass vulnerability in March 2024.
But that was just a disguise.
Visiting the website was all it took to get infected the game was just a distraction.
While weve seen APT actors pursuing financial gain before, this campaign was unique.
source: www.techworm.net
