Security News > 2024 > December > North Korean Kimsuky Hackers Use Russian Email Addresses for Credential Theft Attacks
2024-12-03 09:51
The North Korea-aligned threat actor known as Kimsuky has been linked to a series of phishing attacks that involve sending email messages that originate from Russian sender addresses to ultimately conduct credential theft. "Phishing emails were sent mainly through email services in Japan and Korea until early September," South Korean cybersecurity company Genians said. "Then, from mid-September,
News URL
https://thehackernews.com/2024/12/north-korean-kimsuky-hackers-use.html
Related news
- Microsoft: Hackers steal emails in device code phishing attacks (source)
- Chinese hackers targeted sanctions office in Treasury attack (source)
- Russian ISP confirms Ukrainian hackers "destroyed" its network (source)
- Hackers exploit critical Aviatrix Controller RCE flaw in attacks (source)
- Hackers use FastHTTP in new high-speed Microsoft 365 password attacks (source)
- Hackers leak configs and VPN credentials for 15,000 FortiGate devices (source)
- How Russian hackers went after NGOs’ WhatsApp accounts (source)
- Clone2Leak attacks exploit Git flaws to steal credentials (source)
- EU sanctions Russian GRU hackers for cyberattacks against Estonia (source)
- E.U. Sanctions 3 Russian Nationals for Cyber Attacks Targeting Estonia’s Key Ministries (source)