Kimsuky threat group, deemed to be supported by North Korea, has been active since 2013. At first, they attacked North Korea-related research institutes in South Korea before attacking a South Korean energy corporation in 2014, and have expanded their attacks to other countries since 2017 [1]. The group has mainly been attacking the national defense, defense industry, media, government organizations, and academic areas to steal internal data and technologies from them [2] (This report supports Korean only for now.) The… The post Kimsuky Group’s Spear Phishing Detected by AhnLab EDR (AppleSeed, AlphaSeed) appeared first on ASEC BLOG. Read More
ASEC BLOG