January 15, 2020 10:31
North Korea is launching phishing attacks against individuals and companies disguised as messages from the presidential office here, cybersecurity firm ESTsecurity said Tuesday.
The attacks have been traced to a North Korean hacker group, dubbed Kimsuky. They take the form of a virus-ridden file with a caustic reference to special presidential adviser Moon Chung-in's remarks at the Center for the National Interest in Washington on Jan. 6.
If users open the file, a security alert pops up and an English message prompts the user to click on a button to read the document. If they do, malware is implanted in their computer that can pilfer information and the PC stands by for further orders from the attacker.
Moon Jong-hyun at ESTsecurity said the attack resembles earlier hacking campaigns by Kimsuky.
The group also attempted to launch phishing attacks in October last year with a malware program disguised as a request to help North Korean refugees.
- Copyright © Chosunilbo & Chosun.com