North Korean Hackers on a Rampage: South Korea’s Crypto and Government Under Siege!

North Korea’s Kimsuky group is back with DEEP#DRIVE, a campaign targeting South Korea’s business, government, and cryptocurrency sectors. Using phishing emails and PowerShell scripts, they cleverly exploit Dropbox for payload delivery. Who knew Dropbox could be a hacker’s best friend?

3P
Published: February 13, 2025 2:42 pmAdded: February 13, 2025 at 7:03 amAssembled by: The Editor
Pro Dashboard

Hot Take:

North Korea seems to be swapping missile launches for mouse clicks as they take the term ‘hostile takeover’ way too literally! If you were worried about your Bitcoin disappearing, maybe it’s time to worry about your forklift safety plan too. Someone alert the workplace safety inspector – looks like he’s got competition from a bunch of hackers who have a thing for heavy machinery manuals!

Key Points:

  • North Korean hacker group Kimsuky targets South Korean sectors, including cryptocurrency.
  • The campaign, named DEEP#DRIVE, uses clever phishing techniques with decoy documents.
  • PowerShell scripts and Dropbox are employed for payload delivery and data exfiltration.
  • Attackers disguise their efforts with Korean language documents to appear legitimate.
  • Securonix’s investigation suggests the operation has been running since September last year.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?