North Korean APT43 Uses PowerShell and Dropbox in Targeted South Korea Cyberattacks

Updated on February 13, 2025

A nation-state threat actor with ties to North Korea has been linked to an ongoing campaign targeting South Korean business, government, and cryptocurrency sectors.
The attack campaign, dubbed DEEP#DRIVE by Securonix, has been attributed to a hacking group known as Kimsuky, which is also tracked under the names APT43, Black Banshee, Emerald Sleet, Sparkling Pisces, Springtail, TA427, and Velvet…

Read the rest of the story at Read More

Source: The Hacker News

February 21, 2025 Uncategorized

Webinar: Learn How to Identify High-Risk...

October 30, 2024 Uncategorized

Malvertising Campaign Hijacks Facebook A...

January 23, 2025 Uncategorized

North Korean APT43 Uses PowerShell and Dropbox in Targeted South Korea Cyberattacks

Related posts

Webinar: Learn How to Identify High-Risk...

Malvertising Campaign Hijacks Facebook A...

Experts Find Shared Codebase Linking Mor...

Leave a Comment Cancel reply

Recent News

Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi

Commvault CVE-2025-34028 Added to CISA KEV After Active Exploitation Confirmed

⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors

Perfection is a Myth. Leverage Isn’t: How Small Teams Can Secure Their Google Workspace

Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware

U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems

TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China

How to Automate CVE and Vulnerability Advisory Response with Tines