26 min listen
The Kimsuky group from North Korea expands spyware, malware and infrastructure. [Research Saturday]
FromCyberWire Daily
The Kimsuky group from North Korea expands spyware, malware and infrastructure. [Research Saturday]
FromCyberWire Daily
ratings:
Length:
17 minutes
Released:
Jan 30, 2021
Format:
Podcast episode
Description
Guest Yonatan Striem-Amit joins us from Cybereason to share their Nocturnus Team research into Kimsuky. The Cybereason Nocturnus Team has been tracking various North Korean threat actors, among them the cyber espionage group known as Kimsuky, (aka: Velvet Chollima, Black Banshee and Thallium), which has been active since at least 2012 and is believed to be operating on behalf of the North Korean regime. The group has a rich and notorious history of offensive cyber operations around the world, including operations targeting South Korean think tanks, but over the past few years they have expanded their targeting to countries including the United States, Russia and various nations in Europe.
The research can be found here:
Back to the Future: Inside the Kimsuky KGH Spyware Suite
The research can be found here:
Back to the Future: Inside the Kimsuky KGH Spyware Suite
Released:
Jan 30, 2021
Format:
Podcast episode
More Episodes from CyberWire Daily
Solution Spotlight on the 2024 NICE Conference Keynote: A Journey with No Destination: A CISO’s Pathway to a Cybersecurity Career. [Special Edition] by CyberWire Daily