Ongoing Kimsuky attacks involve novel tactic

25 March 2024

Information-stealing malware has been deployed by North Korean state-backed hacking group Kimsuky in ongoing attacks against South Korean organizations exploiting Compiled HTML Help files, reports The Hacker News. Intrusions involved the distribution of ISO, RAR, ZIP, or VHD files, which when opened enables VBScript execution and eventual payload retrieval, a report from Rapid7 showed.

Source: SC Magazine

Date:

25 March 2024

Categorie(s):

NEWS

Tag(s):

Data Security, IT, Kimsuky, News

Open source programming language R patches critical arbitrary code exec flaw1 May 2024
Open source programming language R patches gnarly arbitrary code exec flaw1 May 2024
Cyber-bastard jailed for stealing psychotherapy files, blackmailing patients30 April 2024
London Drugs pharmacy closes all stores to respond to cyber incident30 April 2024
Health care giant comes clean about recent hack and paid ransom30 April 2024