North Korean hackers target experts and journalists with advanced recon malware

News

North Korean hackers target experts and journalists with advanced recon malware

Researchers say BabyShark variant discovered in email to NK Pro reporter can gather info to facilitate precision attacks

Nils Weisensee | Shreyas ReddyMay 4, 2023

North Korean hackers target experts and journalists with advanced recon malware

An illustration of a hacker using a computer

North Korean hackers have developed a new reconnaissance malware that gathers information about victims’ computers to facilitate precision attacks, a U.S. cybersecurity firm reported Thursday, the latest advancement in the DPRK’s spearphishing operations targeting journalists, experts and government bodies.

SentinelOne assessed that the new malware component, which it dubbed ReconShark, is effectively an evolution of the Kimsuky threat group’s BabyShark malware and could help attackers better evade defenses and exploit weaknesses.

The firm was able to attribute the attack to North Korea and Kimsuky’s BabyShark malware based on links between the

01Timeline: From North Korean satellite launch to Yoon-Kishida summit in Seoul
02State media review: North Korea says ‘no reason’ it can’t meet with Japan
03North Korea primed for quick rebound after satellite launch failure: Analysis
04What to make of conflicting signs about a North Korean border reopening
05North Korea hacked an election body. But political interference wasn’t the goal.
06Secrecy surrounding North Korea’s upcoming plenum points to big changes afoot
07State media review: North Korea provides a front-row seat to anti-Yoon protests
08By linking radars, ROK and Japan reduce blind spots around North Korean missiles

North Korean hackers target experts and journalists with advanced recon malware

LATEST ANALYSIS

Similar Articles

About the Authors

Nils Weisensee

Shreyas Reddy