May 16, 2024, 1:10 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

The Kimsuky APT group, which is closely linked to the North Korean military intelligence organization, has been deploying a newly discovered Linux backdoor in attacks against organizations in South Korea.


The backdoor is known as Gomir and is closely related to another piece of malware called GoBear, which is built for Windows targets. Researchers from Symantec discovered Gomir and said that it is also linked to Troll Stealer, an info stealer that Kimsuky was distributing in the last few …

apt apt group attacks backdoor called intelligence kimsuky korea linux malware military north north korean organization organizations piece south south korea windows

Sr. Product Manager

@ MixMode | Remote, US

Information Security Engineers

@ D. E. Shaw Research | New York City

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

Cyber Security Specialist

@ Ball Corporation | SAO JOSE DOS CAMPOS, São Paulo, BR, 12242-000

Cybersecurity Strategy & Data Systems Manager

@ Mitsubishi Heavy Industries | Orlando, FL, US, 32809