"North Korean Hackers Use 'Nuclear Lure' to Trick and Run New Attack"

"Kimsuky," a North Korean cyber espionage group, is now using North Korea's nuclear threats to lure victims into executing malicious payloads. Researchers at Rapid7 Labs observed Kimsuky using new tactics to target victims. The group has used weaponized Office documents and ISO files, and starting last year, they began abusing shortcut (LNK) files. The attackers trick users into executing LNK files by passing them off as benign documents or files. However, these files contain hidden PowerShell commands or even full binaries. Kimsuky recently began using nuclear topics to lure targeted individuals into opening new types of files. This article continues to discuss new findings regarding Kimsuky's updated tactics.

Cybernews reports "North Korean Hackers Use 'Nuclear Lure' to Trick and Run New Attack"

Submitted by grigby1

Submitted by Gregory Rigby on