- A researcher from a foreign news agency impersonated and approached several North Korean human rights activists.
- They conducted spear phishing attacks by requesting written interviews on the topic of peace on the Korean Peninsula.
- They used malicious HWP documents and disguised DOC and PDF icons with MSC-type malicious code.
- After communicating with a C2 command server located in Italy, they began leaking internal information.
- The Chinese group “Mustang Panda” was caught attempting to imitate Kim Suki’s MSC attack strategy.
Full Report: https://www.genians.co.kr/blog/threat_intelligence/interview