North Korean actors connected to nation-state hacking group Kimsuky have targeted machines using spear-phishing attacks, delivering backdoors like AppleSeed, Meterpreter, and TinyNuke. South Korean cybersecurity firm AhnLab reported these actors used similar methods for years without significant changes to their malware. Kimsuky has been active for over a decade, initially focusing on South Korea before widening its scope. It uses espionage campaigns involving spear-phishing attacks with malicious documents, which then deploy varying malware forms.
![](https://healsecurity.com/wp-content/uploads/2024/07/group-ibs-threat-intelligence-and-defence-centre-equip-undergraduates-with-sophisticated.jpg)
Group-IB’s Threat Intelligence and Defence Centre Equip Undergraduates with Sophisticated Cybersecurity Technologies to Boost Threat Analysis and Enhance Cyber Resilience for Campus Start-ups
Hey there from the heart of the San Francisco Bay Area! It’s an absolute pleasure to have you back again for our chat on some