North Korean hackers target experts and journalists with advanced recon malware
Researchers say BabyShark variant discovered in email to NK Pro reporter can gather info to facilitate precision attacks
North Korean hackers have developed a new reconnaissance malware that gathers information about victims’ computers to facilitate precision attacks, a U.S. cybersecurity firm reported Thursday, the latest advancement in the DPRK’s spearphishing operations targeting journalists, experts and government bodies.
SentinelOne assessed that the new malware component, which it dubbed ReconShark, is effectively an evolution of the Kimsuky threat group’s BabyShark malware and could help attackers better evade defenses and exploit weaknesses.
The firm was able to attribute the attack to North Korea and Kimsuky’s BabyShark malware based on links between the
- 01What North Korea’s official budget reveals about its spending priorities in 2024
- 02How North Korean aggression and the Taiwan election complicate China-DPRK ties
- 03Satellite imagery shows Kim Jong Un’s east coast yacht, missile test activities
- 04Survey shows markets reign supreme in the daily lives of North Koreans
- 05What to make of North Korea’s apparent interest in naval nuclear propulsion
- 06How North Korean defectors shape the policies of countries where they settle
- 07Slump in life insurance sector points to unreported COVID deaths in North Korea
- 08State media review: North Korea set to open long-stalled hospital this year