all InfoSec news
Kimsuky group appears to be exploiting OneNote like the cybercrime group
March 17, 2023, 12:16 p.m. | MalBot
Malware Analysis, News and Indicators - Latest topics malware.news
Author: BLKSMTH | S2W TALON
Last Modified: Mar 17, 2023
Photo by Ed Hardie on Unsplash
Executive Summary
- We have confirmed that the Kimsuky group is distributing malware using a malicious OneNote (.ONE) file, which cybercriminals have widely used.
- When viewed, the ONE file displays an image of the Institute for Peace and Democracy at Korea University and asks the target to fill out a privacy agreement document in order to pay them for participating in a survey. …
author cybercrime cybercriminals democracy document exploiting file kimsuky korea malicious malware malware analysis onenote order peace photo privacy s2w talon target university
More from malware.news / Malware Analysis, News and Indicators - Latest topics
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Security Engineer 2
@ Oracle | BENGALURU, KARNATAKA, India
Oracle EBS DevSecOps Developer
@ Accenture Federal Services | Arlington, VA
Information Security GRC Specialist - Risk Program Lead
@ Western Digital | Irvine, CA, United States
Senior Cyber Operations Planner (15.09)
@ OCT Consulting, LLC | Washington, District of Columbia, United States
AI Cybersecurity Architect
@ FactSet | India, Hyderabad, DVS, SEZ-1 – Orion B4; FL 7,8,9,11 (Hyderabad - Divyasree 3)