Security News > 2024 > December > North Korean Kimsuky Hackers Use Russian Email Addresses for Credential Theft Attacks
2024-12-03 09:51
The North Korea-aligned threat actor known as Kimsuky has been linked to a series of phishing attacks that involve sending email messages that originate from Russian sender addresses to ultimately conduct credential theft. "Phishing emails were sent mainly through email services in Japan and Korea until early September," South Korean cybersecurity company Genians said. "Then, from mid-September,
News URL
https://thehackernews.com/2024/12/north-korean-kimsuky-hackers-use.html
Related news
- North Korean govt hackers linked to Play ransomware attack (source)
- Russian Hackers Exploit New NTLM Flaw to Deploy RAT Malware via Phishing Emails (source)
- Russian hackers hijack Pakistani hackers' servers for their own attacks (source)
- Russian hackers hijack Pakistani hackers' servers for their own attacks (source)
- Notorious Hacker Group TeamTNT Launches New Cloud Attacks for Crypto Mining (source)
- Russian hackers deliver malicious RDP configuration files to thousands (source)
- Hackers steal 15,000 cloud credentials from exposed Git config files (source)
- North Korean Group Collaborates with Play Ransomware in Significant Cyber Attack (source)
- North Korean hackers pave the way for Play ransomware (source)
- Microsoft: Chinese hackers use Quad7 botnet to steal credentials (source)