North Korean hackers using new tactics to bypass email security, US warns



News North Korean hackers using new tactics to bypass email security, US warns Advisory says Kimsuky is taking advantage of weak email verification settings to pass off phishing emails as legitimate Shreyas Reddy May 4, 2024 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON North Koreans use a computer at the Grand People's Study House in Pyongyang \| Image: NK Pro (Jan. 2018) The U.S. has warned that a North Korean cybercrime group has adopted new tactics to bypass email security protocols and boost its social engineering operations against researchers, nonprofits and media organizations. In a joint advisory issued Thursday, the State Department, FBI and National Security Agency (NSA) stated that Kimsuky has been exploiting improperly configured DNS Domain-based Message Authentication, Reporting and Conformance (DMARC) record policies to spoof legitimate email domains and obscure the origins of spear-phishing emails. The alert highlighted North Korean cybercriminals’ reliance on social engineering techniques including spear-phishing to compromise targets’ computers and Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01North Korea reveals new vertical take-off drones amid ‘modern warfare’ push 02How long-range strikes on Russia could impact North Korean troop deployments 03How North Korean hackers and IT workers collude to cause chaos 04What pro-Trump think tanks reveal about his likely North Korea policy priorities 05Yoon bet on US to deter North Korea. Now he faces an alliance skeptic in Trump. 06All the question marks hanging over Trump’s approach to North Korea in term two 07Time almost up for North Korea’s plan to launch 3 military satellites in 2024 08Trump return rekindles prospects of North Korea talks, but Russia stands in way

News

North Korean hackers using new tactics to bypass email security, US warns

Advisory says Kimsuky is taking advantage of weak email verification settings to pass off phishing emails as legitimate

Shreyas Reddy May 4, 2024

North Korean hackers using new tactics to bypass email security, US warns

North Koreans use a computer at the Grand People's Study House in Pyongyang | Image: NK Pro (Jan. 2018)

The U.S. has warned that a North Korean cybercrime group has adopted new tactics to bypass email security protocols and boost its social engineering operations against researchers, nonprofits and media organizations.

In a joint advisory issued Thursday, the State Department, FBI and National Security Agency (NSA) stated that Kimsuky has been exploiting improperly configured DNS Domain-based Message Authentication, Reporting and Conformance (DMARC) record policies to spoof legitimate email domains and obscure the origins of spear-phishing emails.

The alert highlighted North Korean cybercriminals’ reliance on social engineering techniques including spear-phishing to compromise targets’ computers and

North Korean hackers using new tactics to bypass email security, US warns

LATEST ANALYSIS

Similar Articles

About the Author

Shreyas Reddy