Konni Group Using Russian-Language Malicious Word Docs in Latest Attacks

A new phishing attack has been observed leveraging a Russian-language Microsoft Word document to deliver malware capable of harvesting sensitive information from compromised Windows hosts.
The activity has been attributed to a threat actor called Konni, which is assessed to share overlaps with a North Korean cluster tracked as Kimsuky (aka APT43).
"This campaign relies on a remote access trojan

actor attack attacks called cluster compromised deliver malware docs document information kimsuky konni language latest malicious malware microsoft microsoft word north north korean phishing phishing attack russian russian-language sensitive sensitive information share threat threat actor windows word word document