"US, South Korean Agencies Warn of State-Sponsored Spearphishing"

Security agencies recently issued a new cybersecurity advisory, warning of social engineering hacking threats posed by North Korean state-sponsored actors. US and South Korean law enforcement agencies warned that the Democratic People's Republic of Korea (DPRK) cyber group known as Kimsuky is targeting individuals working for research centers, think tanks, academic institutions, and news media organizations. Social engineering, in which deception is used to manipulate and exploit human error, is the primary method Kimsuky hackers apply to gather intelligence from these entities. The advisory identifies spear phishing as one of Kimsuky's most common techniques, particularly in the form of malicious emails that compromise network security. Kimsuky's use of mimicked email addresses to impersonate well-known journalists and news outlets is a notable tactic. From there, malicious actors typically send a link that falsely claims to be an article or news report and contains password-protected documents that help hackers bypass antivirus software. This article continues to discuss the latest advisory regarding the DPRK cyber group Kimsuky.

NextGov reports "US, South Korean Agencies Warn of State-Sponsored Spearphishing"