Dec 3, 09:55 AM

Kimsuky Hackers Use Russian Emails for Credential Theft; Deliver NetSupport RAT and BurnsRAT

Recent cybersecurity reports highlight a surge in phishing attacks orchestrated by the North Korean hacking group Kimsuky. This group has adapted its tactics by utilizing Russian email services, such as Mail.ru, to disguise their phishing attempts aimed at credential theft. Additionally, the Horns & Hooves campaign has been identified as a significant vector for delivering Remote Access Trojans (RATs) like NetSupport RAT and BurnsRAT through fake emails and JavaScript payloads. Various sources, including The Hacker News and Securelist, have provided insights into these evolving threats, emphasizing the need for heightened vigilance in cybersecurity practices.

#North Korean #Kimsuky #Russian #Remote Access Trojans #NetSupport RAT #BurnsRAT #JavaScript #The Hacker News #Securelist

Written with ChatGPT (GPT-4o mini).

Sources

Infosecurity Magazine@InfosecurityMag
1 year ago
Kimsuky Group Adopts New Phishing Tactics to Target Victims https://t.co/Yrew3gtzxH
Infosec Alevski 💻🕵️‍♂️@Alevskey
1 year ago
Ransomware's Grip on Healthcare: https://t.co/Y2LdJ0pXHC by darkreading #infosec #cybersecurity #technology #news
Infosec Alevski 💻🕵️‍♂️@Alevskey
1 year ago
Note From the Editor-in-Chief: https://t.co/p8oO4qzUWE by darkreading #infosec #cybersecurity #technology #news

Kimsuky Hackers Use Russian Emails for Credential Theft; Deliver NetSupport RAT and BurnsRAT

Sources

Additional media

Similar Stories