all InfoSec news
A Look At Threat Intel Through The Lens Of Kimsuky
Malware Analysis, News and Indicators - Latest topics malware.news
Rapid7 recently shared a fascinating post regarding the Kimsuky threat actor group making changes in their playbooks, specifically in their apparent shift to the use of .chm/"compiled HTML Help" files. In the post, the team does a great job of sharing not only likely reasons why there might be a shift to this file format, but also what organizations have been previously targeted by the threat actor group, and why they believe that this is shift in TTPs, rather than …
actor chm files great html intel job kimsuky lens making playbooks rapid7 sharing team threat threat actor threat intel