Kimsuky Deploys HTTPSpy, Expands Arsenal with HelloDoor and VS Code Tunnels

Updated on May 29, 2026

The North Korean state-sponsored threat actor known as Kimsuky (aka Velvet Chollima) has been attributed to a fresh set of cyber attacks targeting South Korean military and corporate entities through March and April 2026.

“Kimsuky employed a range of tailored social engineering tactics, such as spoofing security software installation pages and crafting a fake Webex meeting page that leveraged…

Read the rest of the story at Read More

Source: The Hacker News

December 17, 2025 Uncategorized

China-Linked Ink Dragon Hacks Government...

March 19, 2026 Uncategorized

DarkSword iOS Exploit Kit Uses 6 Flaws, ...

January 8, 2025 Uncategorized

Kimsuky Deploys HTTPSpy, Expands Arsenal with HelloDoor and VS Code Tunnels

Related posts

China-Linked Ink Dragon Hacks Government...

DarkSword iOS Exploit Kit Uses 6 Flaws, ...

Mirai Botnet Variant Exploits Four-Faith...

Leave a Comment Cancel reply

Recent News

New Russian-Linked GREYVIBE Targets Ukraine with AI-Powered Cyberattacks

What 2,000 Exposed Vibe-Coded Apps Reveal About the Limits of Most Security Stacks

Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

Kimsuky Deploys HTTPSpy, Expands Arsenal with HelloDoor and VS Code Tunnels

Critical Gogs RCE Vulnerability Lets Any Authenticated User Execute Arbitrary Code

Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer

Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal

ThreatsDay Bulletin: Claude Security Plugin, Azure Priv-Esc, Kali365 MFA Bypass, FIFA Scams +15 More

New AI Usage Report: Enterprise AI Risk Is Heavily Concentrated Among a Small Group of AI “Power users”

JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware