N. Korea-linked Kimsuky Shifts to Compiled HTML Help Files in Ongoing Cyberattacks

4 months ago [email protected] (The Hacker News)
N. Korea-linked Kimsuky Shifts to Compiled HTML Help Files in Ongoing Cyberattacks


The North Korea-linked threat actor known as Kimsuky (aka Black Banshee, Emerald Sleet, or Springtail) has been observed shifting its tactics, leveraging Compiled HTML Help (CHM) files as vectors to deliver malware for harvesting sensitive data.
Kimsuky, active since at least 2012, is known to target entities located in South Korea as well as North America, Asia, and Europe.
According

The post “N. Korea-linked Kimsuky Shifts to Compiled HTML Help Files in Ongoing Cyberattacks” appeared first on The Hacker News

Source:The Hacker News – [email protected] (The Hacker News)

Tags: ,

More Stories

French Authorities Launch Operation to Remove PlugX Malware from Infected Systems

4 hours ago [email protected] (The Hacker News)

Malicious PyPI Package Targets macOS to Steal Google Cloud Credentials

4 hours ago [email protected] (The Hacker News)

This AI-Powered Cybercrime Service Bundles Phishing Kits with Malicious Android Apps

21 hours ago [email protected] (The Hacker News)

Offensive AI: The Sine Qua Non of Cybersecurity

23 hours ago [email protected] (The Hacker News)

U.S. DoJ Indicts North Korean Hacker for Ransomware Attacks on Hospitals

1 day ago [email protected] (The Hacker News)

Ongoing Cyberattack Targets Exposed Selenium Grid Services for Crypto Mining

1 day ago [email protected] (The Hacker News)