Researchers discover watering hole attack targeting pro-North Korea individuals



News Researchers discover watering hole attack targeting pro-North Korea individuals Latest cyberattack fits threat actor Earth Kitsune’s history of targeting North Korea-related websites and individuals Shreyas Reddy February 22, 2023 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON Representation of a hacked computer \| Image: aichinger76/Pixabay A hacking group known to target DPRK watchers compromised a “pro-North Korea” website late last year to distribute malware to visitors, security researchers say, though it’s unclear whether the attackers have links to Pyongyang. According to a Trend Micro report published Friday, a group dubbed Earth Kitsune modified the website of an unspecified pro-North Korean organization to display an error message that prompts visitors to download a trojanized installer to watch videos on the site. This installer in turn loads a backdoor that can perform various functions including deleting, listing, downloading and uploading files Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01Trump return rekindles prospects of North Korea talks, but Russia stands in way 02How China could benefit from North Korea’s troop deployment to Ukraine 03New North Korean ICBM delivers big political message, and likely bigger payloads 04How North Korea-Russia ties will challenge next US president, no matter who wins 05What to make of the stunning collapse in value of North Korean won 06What to know about Kim Yong Bok, the man leading North Korean troops in Russia 07If Trump: How erratic leader’s reelection could scramble North Korea policy 08North Korea’s admission of drone incursion exposes glaring gaps in air defenses

News

Researchers discover watering hole attack targeting pro-North Korea individuals

Latest cyberattack fits threat actor Earth Kitsune’s history of targeting North Korea-related websites and individuals

Shreyas Reddy February 22, 2023

Researchers discover watering hole attack targeting pro-North Korea individuals

Representation of a hacked computer | Image: aichinger76/Pixabay

A hacking group known to target DPRK watchers compromised a “pro-North Korea” website late last year to distribute malware to visitors, security researchers say, though it’s unclear whether the attackers have links to Pyongyang.

According to a Trend Micro report published Friday, a group dubbed Earth Kitsune modified the website of an unspecified pro-North Korean organization to display an error message that prompts visitors to download a trojanized installer to watch videos on the site.

This installer in turn loads a backdoor that can perform various functions including deleting, listing, downloading and uploading files

01Trump return rekindles prospects of North Korea talks, but Russia stands in way
02How China could benefit from North Korea’s troop deployment to Ukraine
03New North Korean ICBM delivers big political message, and likely bigger payloads
04How North Korea-Russia ties will challenge next US president, no matter who wins
05What to make of the stunning collapse in value of North Korean won
06What to know about Kim Yong Bok, the man leading North Korean troops in Russia
07If Trump: How erratic leader’s reelection could scramble North Korea policy
08North Korea’s admission of drone incursion exposes glaring gaps in air defenses

Researchers discover watering hole attack targeting pro-North Korea individuals

LATEST ANALYSIS

Similar Articles

About the Author

Shreyas Reddy