North Korean hackers using new tactics to bypass email security, US warns



News North Korean hackers using new tactics to bypass email security, US warns Advisory says Kimsuky is taking advantage of weak email verification settings to pass off phishing emails as legitimate Shreyas Reddy May 4, 2024 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON North Koreans use a computer at the Grand People's Study House in Pyongyang \| Image: NK Pro (Jan. 2018) The U.S. has warned that a North Korean cybercrime group has adopted new tactics to bypass email security protocols and boost its social engineering operations against researchers, nonprofits and media organizations. In a joint advisory issued Thursday, the State Department, FBI and National Security Agency (NSA) stated that Kimsuky has been exploiting improperly configured DNS Domain-based Message Authentication, Reporting and Conformance (DMARC) record policies to spoof legitimate email domains and obscure the origins of spear-phishing emails. The alert highlighted North Korean cybercriminals’ reliance on social engineering techniques including spear-phishing to compromise targets’ computers and Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01With Yoon’s exit, South Korea faces critical choices on North Korea strategy 02Tools of the trade: How North Korea launders billions in stolen cryptocurrency 03North Korea’s ‘new’ sniper rifle likely Austrian import or copy: Analysis 04North Korean ICBM factory upgrade project resumes, expands: Imagery 05Ruse or revolution? Analyzing North Korea’s new drone and AEW&C aircraft 06New construction underway near North Korean aircraft factories amid drone push 07What Americans think about travel to North Korea, 8 years after Warmbier’s death 08North Korea preparing to move large new warship in sign of advanced development 09How Trump can break the impasse with North Korea by prioritizing nuclear safety 10Why there’s still a long road to Trump-Putin cooperation on North Korean nukes

News

North Korean hackers using new tactics to bypass email security, US warns

Advisory says Kimsuky is taking advantage of weak email verification settings to pass off phishing emails as legitimate

Shreyas Reddy May 4, 2024

North Korean hackers using new tactics to bypass email security, US warns

North Koreans use a computer at the Grand People's Study House in Pyongyang | Image: NK Pro (Jan. 2018)

The U.S. has warned that a North Korean cybercrime group has adopted new tactics to bypass email security protocols and boost its social engineering operations against researchers, nonprofits and media organizations.

In a joint advisory issued Thursday, the State Department, FBI and National Security Agency (NSA) stated that Kimsuky has been exploiting improperly configured DNS Domain-based Message Authentication, Reporting and Conformance (DMARC) record policies to spoof legitimate email domains and obscure the origins of spear-phishing emails.

The alert highlighted North Korean cybercriminals’ reliance on social engineering techniques including spear-phishing to compromise targets’ computers and

North Korean hackers using new tactics to bypass email security, US warns

LATEST ANALYSIS

Similar Articles

About the Author

Shreyas Reddy