North Korea-linked Kimsuky used a new Linux backdoor in recent attacks
Security Affairs
MAY 19, 2024
Kimsuky cyberespionage group (aka Springtail, ARCHIPELAGO, Black Banshee, Thallium , Velvet Chollima, APT43 ) was first spotted by Kaspersky researcher in 2013. Troll Stealer can also copy the GPKI (Government Public Key Infrastructure) folder on infected computers. Gomir and GoBear share a great portion of their code.
Let's personalize your content