State of New Jersey SealOFFICIAL SITE OF THE STATE OF NEW JERSEY

Project Zero Details Hacking Operation Targeting Android and Windows

NJCCIC Alert

Original Release Date: 1/14/2021

Summary

Google’s Project Zero recently detailed in a series of blog posts a hacking operation that was first detected in early 2020 targeting Android and Windows devices via two exploit servers, exploit chains, and watering hole attacks. To gain access to the targeted devices, the threat actors exploited vulnerabilities in Google Chrome and subsequently used additional exploits to establish further control. Project Zero detailed the hacking operations as sophisticated and well-engineered, with novel exploitation methods and post-exploitation techniques.

Recommendations

The NJCCIC recommends reviewing the ZDNet article and Project Zero blog posts for additional details and information to help cybersecurity defenders in identifying these and similar attacks.

Join & Subscribe

Never miss an update! Sign up for a no cost membership today! Receive up-to-date content and more in our weekly bulletin.

Sign Up

Featured Content

New Jersey Cybersecurity & Communications Integration Cell

2 Schwarzkopf Dr, Ewing Township, NJ 08628

njccic@cyber.nj.gov

OUR COMMITMENT

The NJCCIC is a component organization within the New Jersey Office of Homeland Security and Preparedness. We are the State's one-stop-shop for cyber threat analysis, incident reporting, and information sharing and are committed to making New Jersey more resilient to cyber threats by spreading awareness and promoting the adoption of best practices.

Agency Seals of State of NJ, NJOHSP and NJCCIC

STAY CONNECTED:

View our Privacy Policy here.

View our Site Index here.