image credit: Needpix

North Korean APT Uses Malicious Microsoft OneDrive Links to Spread New Malware

May 8, 2023


North Korean cyber espionage group Kimsuky has expanded its attack arsenal with a new spear-phishing campaign that uses Microsoft OneDrive links in documents armed with malicious macros that drop novel reconnaissance malware.

Researchers at SentinelLabs observed a new campaign from the threat actor targeting staff of Korea Risk Group (KRG), an information and analysis firm specializing in matters directly and indirectly impacting the Democratic People’s Republic of Korea (DPRK).

Read More on Dark Reading