Security News > 2024 > December > North Korean Kimsuky Hackers Use Russian Email Addresses for Credential Theft Attacks

2024-12-03 09:51
The North Korea-aligned threat actor known as Kimsuky has been linked to a series of phishing attacks that involve sending email messages that originate from Russian sender addresses to ultimately conduct credential theft. "Phishing emails were sent mainly through email services in Japan and Korea until early September," South Korean cybersecurity company Genians said. "Then, from mid-September,
News URL
https://thehackernews.com/2024/12/north-korean-kimsuky-hackers-use.html
Related news
- Microsoft: Hackers steal emails in device code phishing attacks (source)
- Bybit Hack Traced to Safe{Wallet} Supply Chain Attack Exploited by North Korean Hackers (source)
- North Korean hackers adopt ClickFix attacks to target crypto firms (source)
- Hacker pleads guilty to SIM swap attack on US SEC X account (source)
- Russian military hackers deploy malicious Windows activators in Ukraine (source)
- North Korean Hackers Exploit PowerShell Trick to Hijack Devices in New Cyberattack (source)
- BadPilot network hacking campaign fuels Russian SandWorm attacks (source)
- North Korean hackers spotted using ClickFix tactic to deliver malware (source)
- whoAMI attacks give hackers code execution on Amazon EC2 instances (source)
- Microsoft: Russian-Linked Hackers Using 'Device Code Phishing' to Hijack Accounts (source)