New North Korean phishing campaign targets security researchers: Report



News New North Korean phishing campaign targets security researchers: Report Cybersecurity firm says target signals ‘shift in strategy’ and that use of custom tools highlights malware development Shreyas Reddy March 10, 2023 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON The LinkedIn app on a smartphone \| Image: Bastian Riccardi/Pexels A North Korean hacker group has been running an extensive spear-phishing campaign targeting Western media and technology companies and security researchers for almost a year, according to U.S. cybersecurity firm Mandiant. In a two-part blog post outlining the campaign’s tactics and operations, the company states that it has been tracking multiple intrusions since June 2022 by a suspected DPRK espionage group nicknamed UNC2970. The firm suspects “with high confidence” that this group is UNC577 or “TEMP.Hermit,” which Mandiant previously linked to operations of North Korea’s notorious Lazarus Group, according to the report. [p Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01Trump return rekindles prospects of North Korea talks, but Russia stands in way 02How China could benefit from North Korea’s troop deployment to Ukraine 03New North Korean ICBM delivers big political message, and likely bigger payloads 04How North Korea-Russia ties will challenge next US president, no matter who wins 05What to make of the stunning collapse in value of North Korean won 06What to know about Kim Yong Bok, the man leading North Korean troops in Russia 07If Trump: How erratic leader’s reelection could scramble North Korea policy 08North Korea’s admission of drone incursion exposes glaring gaps in air defenses

News

New North Korean phishing campaign targets security researchers: Report

Cybersecurity firm says target signals ‘shift in strategy’ and that use of custom tools highlights malware development

Shreyas Reddy March 10, 2023

New North Korean phishing campaign targets security researchers: Report

The LinkedIn app on a smartphone | Image: Bastian Riccardi/Pexels

A North Korean hacker group has been running an extensive spear-phishing campaign targeting Western media and technology companies and security researchers for almost a year, according to U.S. cybersecurity firm Mandiant.

In a two-part blog post outlining the campaign’s tactics and operations, the company states that it has been tracking multiple intrusions since June 2022 by a suspected DPRK espionage group nicknamed UNC2970. The firm suspects “with high confidence” that this group is UNC577 or “TEMP.Hermit,” which Mandiant previously linked to operations of North Korea’s notorious Lazarus Group, according to the report.

01Trump return rekindles prospects of North Korea talks, but Russia stands in way
02How China could benefit from North Korea’s troop deployment to Ukraine
03New North Korean ICBM delivers big political message, and likely bigger payloads
04How North Korea-Russia ties will challenge next US president, no matter who wins
05What to make of the stunning collapse in value of North Korean won
06What to know about Kim Yong Bok, the man leading North Korean troops in Russia
07If Trump: How erratic leader’s reelection could scramble North Korea policy
08North Korea’s admission of drone incursion exposes glaring gaps in air defenses

New North Korean phishing campaign targets security researchers: Report

LATEST ANALYSIS

Similar Articles

About the Author

Shreyas Reddy