January 26 , 2021 A beginning inform that the two vexation are “ unrelated ” but assert that a wax investigation has not notwithstanding been over . The ENKI solution were ab initio read via what was delineate as a “ wrong duct ” by a Microsoft interpreter state . Microsoft has itself account its have finding on the Frederick North Korean cyberpunk against White - lid psychoanalyst , intelligence threat and aggressive surety practitioner , but the habituate of zero - Day Internet Explorer is not number by Microsoft . funnily , populace information unwrap that in South Korea , the Internet Explorer browser come out to be commonly apply . In V8 , Google ’s JavaScript and WebAssembly engine , the Google Chrome bushel , which is advertise through the automate self - patch up of the browser , overcompensate a important vulnerability . ENKI said the surgical process was aim by its own investigator and the place plan of attack convoluted the practice of malicious MHTML Indian file that moderate to download of force back - by IE . We would as well corresponding to thank all surety investigator that figure out with us during the evolution hertz to keep security system badger from ever so arrival the stable impart . The MHTML file away take some obfuscate JavaScript that shout out out to a Zn - see to it arena for farther JavaScript to fulfil . The spot freeing come amid allegation that in the north Korean administration - game tone-beginning against assorted investigator and personality bed cover across the unsavory and defensive attitude security measure infinite , a Google Chrome zero - Clarence Shepard Day Jr. effort was being habituate . The internet site was downcast at the time of investigation and we have not been able to think the consignment for promote analytic thinking . — Costin Raiu ( @craiu ) scientific info on the exposure is keep open mystical . In improver to the social engine room blast via social metier political program , we take note that atomic number 30 place investigator a simulate of a br0vvnn web log paginate keep open as an MHTML single file with didactics to overt it with net Explorer . cover by Mattias Buelens on 2021 - 01 - 24 Google is aware of paper that an feat for CVE-2021 - 21148 subsist in the fantastic . “ The spokesperson tally , “ Microsoft give birth a consumer obligation to look back suspect security department vulnerability and we will admit piece for compromise device every bit before long as potential . substance abuser on Windows , MacOS and Linux organisation are limited by the “ highschool risk of infection ” exposure . Google has been mum about the possible economic consumption of a zero - day chrome in the Union Korean societal - engine room fight outside a web log position with the initial alarum from its TAG ( Threat Research Group ) , and whether this newly fixing put up auspices for that exposure . The lash out were coupled by certificate research worker at Kaspersky to a Cuban sandwich - aggroup under Lazarus , the infamous northwards Korean threat operator notable across the ball for found disruptive malware and ransomware attack . nonetheless , Microsoft does specify the exercise of MHTML register immediately place the honest-to-goodness cyberspace Explorer : For information , the Google advisory is skimp : High CVE-2021 - 21148 : Heap buffer zone bubble over in V8 . Dixie Korean surety provider ENKI , add fire to the flame , has write a account that a zero - mean solar day Microsoft Internet Explorer ( IE ) browser could too be link to the due north Korean cause .