Hackers use malicious web extension to track users’ emails
Network security company Flexibility reported that a group of hackers from North Korea are using a malicious Google Chrome and Microsoft Edge extension to track email accounts. The malicious extension called ‘SharpTongue’ is capable of stealing email content from Gmail and AOLs.
The company claims that SharpTongue is targeting and falling victim to individuals working for organizations in the United States, Europe, and South Korea who work on topics related to North Korea, nuclear issues, weapons systems and other strategic issues of concern to North Korea.
Over the last year, Volexity has responded to numerous SharpTongue-related incidents and in most cases discovered a malicious Google Chrome or Microsoft Edge Volexity Extension call “SHARPEXT”.
The cybersecurity company claims that the malware found directly inspects and pulls data from victims’ webmail accounts as they browse through it. Since its discovery, the extension has evolved and is currently at version 3.0, based on an internal versioning system. It supports three web browsers and steals mail from both Gmail and AOL webmail.
FacebookTwitterInstagramKOOKS APPYOUTUBE