Kimsuky Exploits BlueKeep RDP Vulnerability to Breach Systems in South Korea and Japan

Updated on April 21, 2025

Cybersecurity researchers have flagged a new malicious campaign related to the North Korean state-sponsored threat actor known as Kimsuky that exploits a now-patched vulnerability impacting Microsoft Remote Desktop Services to gain initial access.
The activity has been named Larva-24005 by the AhnLab Security Intelligence Center (ASEC).
“In some systems, initial access was gained through…

Read the rest of the story at Read More

Source: The Hacker News

August 30, 2024 Uncategorized

SANS Institute Unveils Critical Infrastr...

May 1, 2025 Uncategorized

Commvault Confirms Hackers Exploited CVE...

February 3, 2025 Uncategorized

Kimsuky Exploits BlueKeep RDP Vulnerability to Breach Systems in South Korea and Japan

Related posts

SANS Institute Unveils Critical Infrastr...

Commvault Confirms Hackers Exploited CVE...

⚡ THN Weekly Recap: Top Cybersecurity ...

Leave a Comment Cancel reply

Recent News

⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors

Perfection is a Myth. Leverage Isn’t: How Small Teams Can Secure Their Google Workspace

Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware

U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems

TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China

How to Automate CVE and Vulnerability Advisory Response with Tines

MintsLoader Drops GhostWeaver via Phishing, ClickFix — Uses DGA, TLS for Stealth Attacks

Microsoft Sets Passkeys Default for New Accounts; 15 Billion Users Gain Passwordless Support