North Korean hackers using new tactics to bypass email security, US warns



News North Korean hackers using new tactics to bypass email security, US warns Advisory says Kimsuky is taking advantage of weak email verification settings to pass off phishing emails as legitimate Shreyas Reddy May 4, 2024 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON North Koreans use a computer at the Grand People's Study House in Pyongyang \| Image: NK Pro (Jan. 2018) The U.S. has warned that a North Korean cybercrime group has adopted new tactics to bypass email security protocols and boost its social engineering operations against researchers, nonprofits and media organizations. In a joint advisory issued Thursday, the State Department, FBI and National Security Agency (NSA) stated that Kimsuky has been exploiting improperly configured DNS Domain-based Message Authentication, Reporting and Conformance (DMARC) record policies to spoof legitimate email domains and obscure the origins of spear-phishing emails. The alert highlighted North Korean cybercriminals’ reliance on social engineering techniques including spear-phishing to compromise targets’ computers and Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01New North Korean ICBM delivers big political message, and likely bigger payloads 02How North Korea-Russia ties will challenge next US president, no matter who wins 03What to make of the stunning collapse in value of North Korean won 04What to know about Kim Yong Bok, the man leading North Korean troops in Russia 05If Trump: How erratic leader’s reelection could scramble North Korea policy 06North Korea’s admission of drone incursion exposes glaring gaps in air defenses 07The war in Ukraine is transforming how Europe perceives North Korean threats 08What North Korea stands to gain by sending troops to fight in Ukraine 09Satellite imagery shows DPRK laid explosives at edge of MDL to destroy roads 10Deciphering the return of No Kwang Chol as North Korea’s minister of defense

News

North Korean hackers using new tactics to bypass email security, US warns

Advisory says Kimsuky is taking advantage of weak email verification settings to pass off phishing emails as legitimate

Shreyas Reddy May 4, 2024

North Korean hackers using new tactics to bypass email security, US warns

North Koreans use a computer at the Grand People's Study House in Pyongyang | Image: NK Pro (Jan. 2018)

The U.S. has warned that a North Korean cybercrime group has adopted new tactics to bypass email security protocols and boost its social engineering operations against researchers, nonprofits and media organizations.

In a joint advisory issued Thursday, the State Department, FBI and National Security Agency (NSA) stated that Kimsuky has been exploiting improperly configured DNS Domain-based Message Authentication, Reporting and Conformance (DMARC) record policies to spoof legitimate email domains and obscure the origins of spear-phishing emails.

The alert highlighted North Korean cybercriminals’ reliance on social engineering techniques including spear-phishing to compromise targets’ computers and

North Korean hackers using new tactics to bypass email security, US warns

LATEST ANALYSIS

Similar Articles

About the Author

Shreyas Reddy