Google's Threat Analysis Group discovered that two distinct North Korean government-backed attacker groups are exploiting a remote code execution vulnerability in Chrome, CVE-2022-0609. These groups' activity has been publicly tracked as Operation Dream Job and Operation AppleJeus.This flaw is a high severity use-after-free vulnerability in the Animation component of Chrome. Not much else is currently known about the bug. A use-after-free (UAF) exploit refers to memory after it has been freed, which can cause a program to use unexpected values, corrupt valid data, crash, or execute code, according to MITRE.
Reference: Countering threats from North Korea